Initial Access

Subdomain Takeover Authenticated Recon Unauthenticated Recon Password Spraying M365 Password Spraying OWA OAuth 2.0 Abuse Device code authentication abuse M365 Business Email Compromise

PreviousToken Theft NextSubdomain Takeover