Attacking Exchange with MailSniper
Summary
Beau Bullock has added modules to MailSniper that aid in remote attacks against organizations with externally facing Exchange servers. The tool targets OWA or EWS interfaces.
IFF Assessment
FOE
This article details a tool designed for offensive purposes, specifically attacking Microsoft Exchange servers, which poses a risk to defenders.
Defender Context
This article highlights a tool that can be used to exploit vulnerabilities in externally facing Microsoft Exchange servers. Defenders should ensure their Exchange environments are patched, properly configured, and monitored for suspicious activity related to OWA and EWS access.