🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

My team just released a new tool called GraphSpy. Useful for testing M365 and Entra! insights.spotit.be/2024/04/05/gra…

Keanu is releasing amazing things lately. Check out the new tool he has just released! 🔥

🟢Small update in GraphSpy adding some colors for the device code table, access tokens table, as well as for some notifications. 🔵Thanks @HuskyHacksMK for the PR! 🔴Update to version 1.1.4 to enjoy! github.com/RedByte1337/Gr…

I was one of the first to clear the new Certified Azure Red Team Expert (CARTE) exam earlier this week! Once again a fantastic training and lab by Nikhil Mittal, where we are encouraged to take the role of hacktivists to compromise the Azure environment of a big oil corporation!

🚀 Releasing the Microsoft Teams module for GraphSpy! This was one of the most requested features so far! It is currently completely using the undocumented MS Teams API (api.spaces.skype.com), making it possible to obtain an access token for it using FOCI refresh tokens!

GraphSpy just hit 400 stars on GitHub! ✨ I published version 1.2.1 to celebrate this milestone by releasing some new features I have been working on. Check out the release notes on GitHub to view all changes and updates! github.com/RedByte1337/Gr…

I just published my research into bypassing Adversary-in-the-Middle (AiTM) phishing detections! 🐤 No real canaries were harmed during this research, although I can't say the same about our SOC after playing with the last technique... 😂 insights.spotit.be/2024/06/03/cli…

I'm excited to share that my workshop at BruCON 0x10 has been officially published! 🍻 #HackingForBeer I'll be closing out the event at the end of the second day with my workshop "Attacking Microsoft 365 with GraphSpy". 🧑‍💻🛠️💡 Full schedule at: brucon.org/2024/schedule/

🚀Just published a huge update to GraphSpy, allowing you to list and modify MFA methods! 🔐 ✅Microsoft Authenticator app ✅Use GraphSpy as an OTP app to generate TOTP codes ✅Security keys (FIDO2) ✅Mobile phone options (SMS or Call) ✅Email github.com/RedByte1337/Gr…

I'm happy to announce that I will be the instructor for the Advanced Azure Red Team training from Altered Security! 🎉 During this expert-level course, we will cover advanced tactics and techniques to attack enterprise-grade Azure environments. 🔥 🔗alteredsecurity.com/carte-bootcamp

Normal users are not anymore able to create Bulk AAD join tokens! That enabled DoS attacks against users' home tenants as they could exhaust Entra ID by filling it with user objects: aadinternals.com/post/dosingaad… Thanks to Keanu Nys for noticing and bringing this up!

Enrollment is open for October 2024 batches for three of Altered Security's popular bootcamps. Learn on-prem and Azure red teaming with us. Join Keanu Nys and me for these hands-on live classes. alteredsecurity.com/bootcamps #RedTeam #Pentesting #Azure

Last week to register in the Azure Red Team Expert bootcamp from Altered Security! Join me during the 4 live sessions in October to level up your Azure Red Teaming skills. alteredsecurity.com/carte-bootcamp

Defenders use cross-origin requests through CSS url() or injected JS to leak your phishing URL in the HTTP Referer header. Today, I've been reminded about the excellent post by Keanu Nys Keanu Nys, which contains a lot of great evasion ideas! insights.spotit.be/2024/06/03/cli…

GraphSpy just hit 600 stars on GitHub after releasing version 1.4!✨ This version introduces the new Entra ID module, better loading animations, and JSON syntax highlighting. Check it out here: github.com/RedByte1337/Gr…

I just published this week's Entra newsletter! Featuring Tony Redmond, ALI TAJRAN, Christian Frohn, @Ciraltos, Daniel Bradley, Marius Solbakken, John Savill, Shehan Perera | MVP, Keanu Nys, IAM Ryan | Cybersecurity | Identity and access, Fabian Bader, Thomas Naunheim, Christopher Brumm Read at ➡️ entra.news/p/entra-news-8…

Microsoft seems to have recently deprecated the legacy account.activedirectory.windowsazure[.]com endpoint, which GraphSpy was using to list and add MFA methods for a user. GraphSpy 1.4.3 now utilizes the mysignins[.]microsoft[.]com API now (which is also a FOCI resource!)

📧 GraphSpy 1.5.0 is out now and brings a brand new Outlook Graph module! ✅Read emails in any folder ✅Send HTML-formatted emails directly in GraphSpy ✅Access shared mailboxes ✅Search for sensitive information like passwords 🔗Check out GraphSpy here: github.com/RedByte1337/Gr…