Zenity

Hopefully you’ve enjoyed each of the 12 Nights of Giving and picked up a few nifty tools for your security utility tool belt. If you’ve missed one (or even two! 😱) be sure to scroll back on our timeline and check out the tools. If you’d like to see a nifty write-up that summarizes each tool, talking through the benefits of Powerpwn and each of the individual free tools, check out our latest blog from Lana Salameh! https://lnkd.in/etca4jW5 #powerpwn #12nightsofgiving #appsec #redteam

🎁 On the 11th Night of Giving, Zenity Labs gave to me… Spearphishing 🤔 So you have control over a compromised account but you’re a curious hacker, so why stop there? With Spearphishing, you can use the help of AI Agents to give you vulnerable additional information and victims to help you spread malware using these powerful AI tools to gain the trust of your victims. 📨 Spearphishing crafts highly personalized emails to target your contacts and collaborators using the agentic capabilities of your enterprise AI Assistants. ❗ Red teams can use this tool to assess how much their organization and teams are protected from phishing attacks that can quickly spiral if not managed. 🛡️ Authenticate users automatically and enhance your phishing defenses with Spearphishing. Stay informed with Zenity Labs. #PhishingDefense #CyberSecurity #ZenityLabs

Great to see the prolific Rob Lemos with another piece on Dark Reading, this time with commentary about 'Does Desktop AI Come With a Side of Risk?'. As AI Agents like Microsoft 365 Copilot, Google Gemini (Project Mariner), and Apple Intelligence become more integrated into our daily lives, now directly in the browser, the potential for increased productivity is immense. However, this rapid adoption also brings significant security concerns. Ben Kliger emphasizes the importance of addressing these risks head-on. He notes, "An LLM gives (an AI Agent) the ability to do things on your behalf without any specific consent or control," he says. "So many of these prompt injection attacks are trying to socially engineer the system — trying to go around other controls that you have in your network without having to socially engineer a human." This article reminds us that while embracing AI can drive innovation, we must remain vigilant and develop insider threat models for Agents in the same way that we do for humans so we can go about safeguarding our digital environments. 🌐🔒 https://lnkd.in/g7rFRZ6j

🎁 On the 10th Night of Giving, Zenity Labs gave to me… No-Code Malware Citizen developers can now build their own AI Agents and automations to take care of mundane, repetitive processes. However, they can also embed these automations into AI Assistants and other powerful business applications, allowing them to execute successfully and report back to the cloud. 🤔 Zenity Labs has built an open source tool, No-Code Malware, that shows any agents or automations that can be repurposed by bad actors to power malware operations; turning these well-meaning automations against the enterprise. 📛 This tool demonstrates how they are used to distribute payloads, bypass perimeter controls, and execute on victim’s machines to exfiltrate data; all using nothing more than baked-in capabilities and cloud services. ☁️ Incorporate these tools into your Red Team arsenal to discover the power of this tool by repurposing trusted executables, service accounts and cloud services in the Power Platform ecosystem to power malware operations so you can take an attacker’s mindset to turn the tables on them. Check out the penultimate tool from Zenity Labs, and stay tuned for tomorrow’s entry before we wrap up the 12 Days of Giving later this week! Stay ahead of threats with Zenity Labs. #CyberSecurity #NoCode #ZenityLabs

🎁 On the 9th Night of Giving, Zenity Labs gave to me…Install a Backdoor Maintain persistence with our Backdoor tool to stay within a tenant by installing an accessible backdoor 😱 With this module, as an outdoor, anyone can invoke the backdoor to fetch credentials, create new access tokens and even their own automations to execute arbitrary commands. Security admins and red teams can (and should) use this free tool to expose the attack surface exposure from outside the organization and keep M365 safe from double agents 🕵 Keep your systems secure with Zenity Labs. #SystemSecurity #Automation #ZenityLabs

Great article on Dark Reading today from Rob Lemos, 'Generative AI Security Tools Go Open Source' which highlights the growing variety of open source tools aimed at exposing security issues, including prompt-injection attacks and jailbreaks. Zenity co-Founder and CTO, Michael Bargury, states "we are in a situation where, if your AI is useful, then it means it's vulnerable, because in order to be useful, we need to feed it data." As organizations adopt AI Agents and Apps, ensuring security and governance is critical. We're here to help with the Zenity Security Assessment Hub; a collection of FREE and open-source tools that security and red team leaders can use to assess and identify risk. More in comments ⬇️

🎁 On the 8th Night of Giving, Zenity Labs gave to me…Copilot Interactive Chat! Engage with Copilot M365 through the powerpwn terminal to uncover access tokens, and more! Enable seamless communication for all business users directly from the terminal with Microsoft 365 Copilot to identify weak spots in your organization’s security and governance posture. Discover more with Zenity Labs and powerpwn. #InteractiveChat #powerpwn #ZenityLabs

🎁 On the 7th Night of Giving, Zenity Labs gave to me…Internal Phishing Use this module to install a trustworthy Canvas or Power App and share it with all the organization and start phishing in one click. This is yet another free, red team tool that can teach security teams about organizational maturity in regards to business-led development and educate about how to deal with phishing attacks from a hacker’s point of view.

🎁 On the 6th Night of Giving Season, Zenity Labs gave to me... Copilot M365 - Dump! This module takes Whoami (check out our post for the 5th night in the comments below) 10 steps forward, using enterprise copilots to dump the content of all files, emails, Sharepoint sites, and more that the user has access to. The module also looks for, and grabs passwords and credentials sitting in emails, calendar invites, or messages that could expose the enterprise to big compliance and security risks. This is a classic Red Team tool to discover all available sensitive content throughout the enterprise that has exposure to enterprise copilots that read and act on them autonomously and constantly. Get started today at the Zenity Security Assessment Hub, or check out the GitHub link in our comments. #DataExtraction #RedTeam #AppSec #ZenityLabs

🎁 On the 6th Night of Giving Season, Zenity Labs gave to me... Copilot M365 - Dump! This module takes Whoami (check out our post for the 5th night in the comments below) 10 steps forward, using enterprise copilots to dump the content of all files, emails, Sharepoint sites, and more that the user has access to. The module also looks for, and grabs passwords and credentials sitting in emails, calendar invites, or messages that could expose the enterprise to big compliance and security risks. This is a classic Red Team tool to discover all available sensitive content throughout the enterprise that has exposure to enterprise copilots that read and act on them autonomously and constantly. Get started today at the Zenity Security Assessment Hub, or check out the GitHub link in our comments. #DataExtraction #RedTeam #AppSec #ZenityLabs