During our red team operations, we frequently come in contact with organisations using Office 365. The present tooling targeted at this environment is somewhat limited meaning that development is often required during engagements. To better prepare ourselves for these environments, we developed a toolkit specifically aimed at Office 365.
In this blogpost we will explore the features that can assist Red Teamers during operations where Office 365 is in heavy use.
You can find the full blogpost on https://www.mdsec.co.uk/2019/07/introducing-the-office-365-attack-toolkit/