1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Meet MailSniper, a tool to search Microsoft Exchange emails for sensitive info

Discussion in 'Network World' started by RSS, Sep 26, 2016.

  1. RSS

    RSS New Member Member

    Meet MailSniper, a new pen tester tool that may be of interest to you if you need to find sensitive data such as passwords, credit card numbers and healthcare data, or need to access databases, or even to discover insider and network architecture information.

    MailSniper is a penetration testing tool, written in PowerShell, to allow for mass searching through email across every mailbox of an organization’s Microsoft Exchange environment.

    Beau Bullock, from the penetration testing firm Black Hills Information Security, cited a 2016 Mandiant M-Trends Report (pdf) which claimed organizations are compromised an average of 146 days before detecting a breach. That long of a window gives attackers plenty of time to locate, compromise and exfiltrate sensitive data; pen testers, however, may only have a window of five days or less to do the same thing in order to prove risk to an organization.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page