Tag: SharePoint

• [$15,000 Bounty] M365 Phish: Power Platform Privilege Escalation and Pivoting (29 Feb 2024)
  Exploring the M365 Power Platform as a means of privilege escalation and flexing control over a phishing victim's SharePoint, OneDrive, Outlook, and Microsoft Teams data.
• M365 Internal Phish: Abusing the Power Platform for SharePoint/OneDrive Privilege Escalation (13 May 2022)
  An internal phishing POC leveraging Microsoft 365 citizen development tools (Power Platform). Phish for access to a target user's OneDrive and all SharePoint sites they own.
• Debugging a Race Condition Between Microsoft Edge and SharePoint (23 Nov 2021)
  A random redirect when opening Edge leads to an investigation discovering some interesting behavior between Edge and SharePoint.

---

All Tags

POC Hacking JavaScript reverse-engineering SharePoint PowerApps Debugging Cloud BugBounty Browser TypeScript Tutorial Privilege-Escalation Power-Automate OneDrive Microsoft M365 Joplin Game-Hacking Electronjs Chromium Browser-Extension x64dbg x32dbg pykd mona.py mobile linux il2cpp adb XXS Wordpress WinDbg-Preview WinDbg Web-Appplication Web VPS Unity Race-Condition Python PowerShell Power-Platform Phishing Pentesting Paypal Payment-Gateway Outlook Oracle Optimization Microsoft-Teams Microsoft-Edge Javascript Java Image-Manipulation HackerOne GraphQL Google-Maps Frida ExpressVPN Exploits Email Electron.js Dynamic-Testing Development Credential-Dumping CodeQL CTF BurpSuite BugCrowd Blender Android .apk