Microsoft Graph Enterprise Intelligence Collector

This Metasploit auxiliary module interacts with the Microsoft Graph API to perform enterprise intelligence collection. It supports authentication using Azure AD application credentials or an existing access token and enables enumeration of Azure users, SharePoint sites, OneDrive files, and Exchan...

Hackers Use ClickFix Trick to Deploy PowerShell-Based Havoc C2 via SharePoint Sites

Cybersecurity researchers are calling attention to a new phishing campaign that employs the ClickFix technique to deliver an open-source command-and-control C2 framework called Havoc. "The threat actor hides each malware stage behind a SharePoint site and uses a modified version of Havoc Demon in...

The remote server returned an error: (401) Unauthorized for Microsoft Loop SharePoint sites

Challenge The Backup of a SharePoint site displays the following error message: Failed to initialize site processing: /contentstorage /CSP, error: The remote server returned an error: 401 Unauthorized. The URL of SharePoint sites created by Microsoft Loop sites can be identified by the...