Go365: Office 365 Password Spraying Tool
Tags
attack-pattern: Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Multi-Factor Authentication - T1556.006 Password Guessing - T1110.001 Password Spraying - T1110.003 Sharepoint - T1213.002 Ssh - T1021.004 Tool - T1588.002 Connection Proxy - T1090 Valid Accounts - T1078 Valid Accounts
Show in Graph
Common Information
Type Value
UUID f6562d9f-8472-402f-965f-985aae9719b7
Fingerprint ab41c9093a6336d5
Analysis status DONE
Considered CTI value 0
Text language
Published June 17, 2021, noon
Added to db Nov. 6, 2023, 7:36 p.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline UNKNOWN
Title Go365: Office 365 Password Spraying Tool
Detected Hints/Tags/Attributes 38/1/25
Source URLs
Redirection Url
Details Source https://www.optiv.com/insights/source-zero/blog/go365-office-365-password-spraying-tool
URL Provider
Details Provider Source level domain
Details optiv.com www.optiv.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 346 Optiv Blog https://www.optiv.com/resources/blog/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 61 
login.microsoftonline.com
Details Domain 281 
docs.microsoft.com
Details Domain 45 
company.com
Details Domain 1 
pwnthisfakedomain.com
Details Domain 4128 
github.com
Details Domain 72 
optiv.com
Details Email 1 
test.user90@pwnthisfakedomain.com
Details Email 1 
test.user91@pwnthisfakedomain.com
Details Email 1 
test.user92@pwnthisfakedomain.com
Details Email 1 
real.user1@pwnthisfakedomain.com
Details Email 1 
test.user93@pwnthisfakedomain.com
Details Email 1 
valid.user94@pwnthisfakedomain.com
Details Email 1 
jane.smith@pwnthisfakedomain.com
Details Email 1 
real.user95@pwnthisfakedomain.com
Details Email 1 
fake.user96@pwnthisfakedomain.com
Details Email 1 
valid.user@pwnthisfakedomain.com
Details Email 65 
legal@optiv.com
Details Github username 2 
tomsteele
Details Github username 5 
optiv
Details Url 1 
https://login.microsoftonline.com/rst2.srf
Details Url 1 
https://docs.microsoft.com/en-us/azure/active-directory/develop/reference-aadsts-error-codes.
Details Url 1 
https://github.com/tomsteele/cloud-proxy
Details Url 1 
https://github.com/optiv/go365
Details Url 1 
https://docs.microsoft.com/en-us/microsoft-365/admin/security-and-compliance/multi-factor-authentication-microsoft-365?view=o365
Details Url 1 
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-password-ban-bad