├── .gitattributes
├── LICENSE
├── README.md
├── TokenTactics.psd1
├── TokenTactics.psm1
├── capturetokenphish
    ├── capturetokenphish.ps1
    ├── capturetokenphish.py
    ├── deploycaptureserver.ps1
    ├── requirements.txt
    └── setup.sh
├── modules
    ├── CapBypass.ps1
    ├── OutlookEmailAbuse.ps1
    ├── TokenHandler.ps1
    └── helpers.ps1
└── resources
    ├── DeviceCodePhishingEmailTemplate.oft
    ├── DynamicDeviceCodes.html
    ├── example_phish.html
    ├── example_requests
        ├── delve_request.txt
        ├── owa_request.txt
        ├── owa_request_v2.txt
        └── substrate_request.txt
    └── java_redirect_phish.html


/.gitattributes:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/.gitattributes


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/LICENSE


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/README.md


--------------------------------------------------------------------------------
/TokenTactics.psd1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/TokenTactics.psd1


--------------------------------------------------------------------------------
/TokenTactics.psm1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/TokenTactics.psm1


--------------------------------------------------------------------------------
/capturetokenphish/capturetokenphish.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/capturetokenphish/capturetokenphish.ps1


--------------------------------------------------------------------------------
/capturetokenphish/capturetokenphish.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/capturetokenphish/capturetokenphish.py


--------------------------------------------------------------------------------
/capturetokenphish/deploycaptureserver.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/capturetokenphish/deploycaptureserver.ps1


--------------------------------------------------------------------------------
/capturetokenphish/requirements.txt:
--------------------------------------------------------------------------------
1 | Flask


--------------------------------------------------------------------------------
/capturetokenphish/setup.sh:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/capturetokenphish/setup.sh


--------------------------------------------------------------------------------
/modules/CapBypass.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/modules/CapBypass.ps1


--------------------------------------------------------------------------------
/modules/OutlookEmailAbuse.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/modules/OutlookEmailAbuse.ps1


--------------------------------------------------------------------------------
/modules/TokenHandler.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/modules/TokenHandler.ps1


--------------------------------------------------------------------------------
/modules/helpers.ps1:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/modules/helpers.ps1


--------------------------------------------------------------------------------
/resources/DeviceCodePhishingEmailTemplate.oft:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/resources/DeviceCodePhishingEmailTemplate.oft


--------------------------------------------------------------------------------
/resources/DynamicDeviceCodes.html:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/resources/DynamicDeviceCodes.html


--------------------------------------------------------------------------------
/resources/example_phish.html:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/resources/example_phish.html


--------------------------------------------------------------------------------
/resources/example_requests/delve_request.txt:
--------------------------------------------------------------------------------
1 | GET / HTTP/1.1
2 | Host: delve.office.com
3 | Authorization: Bearer eyJ


--------------------------------------------------------------------------------
/resources/example_requests/owa_request.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/resources/example_requests/owa_request.txt


--------------------------------------------------------------------------------
/resources/example_requests/owa_request_v2.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/resources/example_requests/owa_request_v2.txt


--------------------------------------------------------------------------------
/resources/example_requests/substrate_request.txt:
--------------------------------------------------------------------------------
1 | GET /owa/Notes HTTP/1.1
2 | Host: substrate.office.com
3 | Authorization: Bearer eyJ


--------------------------------------------------------------------------------
/resources/java_redirect_phish.html:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rvrsh3ll/TokenTactics/HEAD/resources/java_redirect_phish.html


--------------------------------------------------------------------------------