Rahman retweetledi

😭𝗘𝗮𝘀𝘆𝗧𝗼𝗸𝗲𝗻𝘀: 𝗞𝗮𝗹𝗶𝟯𝟲𝟱 - 𝗘𝘃𝗶𝗹𝗧𝗼𝗸𝗲𝗻𝘀 𝗥𝗲𝗽𝗹𝗶𝗰𝗮
EasyTokens is a red-team tool that emulates 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝟯𝟲𝟱 𝗱𝗲𝘃𝗶𝗰𝗲-𝗰𝗼𝗱𝗲 𝗽𝗵𝗶𝘀𝗵𝗶𝗻𝗴 𝗮𝘁𝘁𝗮𝗰𝗸𝘀, capturing OAuth access and refresh tokens after victims complete legitimate Microsoft authentication, allowing operators to access Microsoft Graph resources such as email and OneDrive without stealing passwords.
Architecture -The project consists of:
• Python backend services
• SQLite token storage
• Nginx reverse proxy
• Victim enrollment pages
• Operator dashboard
• Microsoft Graph integration for searching emails and OneDrive content
• Relay node functionality for distributed deployments
github.com/secdev02/EasyT…
#RedTeamTool #EasyTokens #DeviceCodePhishing
English
























