{ "type": "bundle", "id": "bundle--99f961b0-910b-4ec6-90d1-426ff318226d", "spec_version": "2.0", "objects": [ { "labels": [ "tool" ], "x_mitre_platforms": [ "Office 365", "Windows", "Azure AD" ], "x_mitre_domains": [ "enterprise-attack" ], "x_mitre_aliases": [ "MailSniper" ], "object_marking_refs": [ "marking-definition--fa42a846-8d90-4e51-bc29-71d5b4802168" ], "id": "tool--999c4e6e-b8dc-4b4f-8d6e-1b829f29997e", "type": "tool", "created": "2019-10-05T02:34:01.189Z", "created_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5", "external_references": [ { "external_id": "S0413", "source_name": "mitre-attack", "url": "https://attack.mitre.org/software/S0413" }, { "source_name": "GitHub MailSniper", "url": "https://github.com/dafthack/MailSniper", "description": "Bullock, B., . (2018, November 20). MailSniper. Retrieved October 4, 2019." } ], "modified": "2020-03-30T17:01:41.302Z", "name": "MailSniper", "description": "MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used by a non-administrative user to search their own email, or by an Exchange administrator to search the mailboxes of every user in a domain.(Citation: GitHub MailSniper)", "x_mitre_version": "1.1", "x_mitre_attack_spec_version": "2.1.0", "x_mitre_modified_by_ref": "identity--c78cb6e5-0c4b-4611-8297-d1b8b55e40b5" } ] }