Marc André Tanner
@brain-dump.org
Information security, operating systems, text editors
github.com/martanne
github.com/martanne
After some more tests and helpful community feedback I managed to successfully exploit the same testing device using the WinPE method. The blog post has been updated with a corresponding demonstration video.
July 21, 2025 at 5:42 AM
After some more tests and helpful community feedback I managed to successfully exploit the same testing device using the WinPE method. The blog post has been updated with a corresponding demonstration video.
TokenPhisher now forces recent MFA logins from victims which comes in handy when emulating these device code phishing tactics: github.com/CompassSecur...
Force recent MFA login by victim by martanne · Pull Request #5 · CompassSecurity/TokenPhisher
This adds the ngcmfa claim when initiating the device code flow.
The underlying request should be identical to what Dirk-jan eventually implemented for roadtx auth --device-code --force-ngcmfa ... ...
github.com
February 17, 2025 at 9:00 AM
TokenPhisher now forces recent MFA logins from victims which comes in handy when emulating these device code phishing tactics: github.com/CompassSecur...