MailSniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment.

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an Exchange administrator to search the mailboxes of every user in a domain.

MailSniper

MailSniper

Quick Start Guide
There are two main functions in MailSniper. These two functions are Invoke-GlobalMailSearch and Invoke-SelfSearch.
* Invoke-GlobalMailSearch is a module that will connect to a Microsoft Exchange server and grant the “ApplicationImpersonation” role to a specified user. Having the “ApplicationImpersonation” role allows that user to search through all other domain user’s mailboxes. After this role has been granted the Invoke-GlobalMailSearch function creates a list of all mailboxes in the Exchange database. It then connects to Exchange Web Services using the impersonation role to gather a number of emails from each mailbox, and ultimately searches through them for specific terms. By default the script searches for “*password*”,”*creds*”,”*credentials*”
command can be used:

* Invoke-SelfSearch is a module that will connect to a Microsoft Exchange server using Exchange Web Services to gather a number of emails from the current user’s mailbox. It then searches through them for specific terms. This could potentially assist in privilege escalation after obtaining a user’s credentials or assist in locating sensitive data as a non-admin.
command can be used:

Download: Master.zip
Source: http://www.blackhillsinfosec.com