puzzlepeaches · July 27, 2024 15:13
diff --git a/onedrive-user-enum.yaml b/onedrive-user-enum.yaml
 id: onedrive-user-enum 
 info:
  name: Onedrive user enumeration
  author: ed 
  severity: info
  description: Enumerate users in the target tenant's onedrive using nyxgeeks technique 

 variables:
  tenant: "acmecom"

 http:
  - method: GET 
    path:
      - "https://{{tenant}}-my.sharepoint.com/personal/{{replace(user, '.', '_')}}_{{replace(Host, '.', '_')}}/_layouts/15/onedrive.aspx"
    redirects: false 
    headers:
      User-Agent: "curl/7.64.1"
      Accept: "*/*"
      Host: "{{tenant}}-my.sharepoint.com"

    attack: batteringram 
    payloads:
      user: test.txt

    matchers-condition: or 
    matchers:
      - type: status
        status:
          - 401
          - 403
	id: onedrive-user-enum
	info:
	name: Onedrive user enumeration
	author: ed
	severity: info
	description: Enumerate users in the target tenant's onedrive using nyxgeeks technique

	variables:
	tenant: "acmecom"

	http:
	- method: GET
	path:
	- "https://{{tenant}}-my.sharepoint.com/personal/{{replace(user, '.', '_')}}_{{replace(Host, '.', '_')}}/_layouts/15/onedrive.aspx"
	redirects: false
	headers:
	User-Agent: "curl/7.64.1"
	Accept: "/"
	Host: "{{tenant}}-my.sharepoint.com"

	attack: batteringram
	payloads:
	user: test.txt

	matchers-condition: or
	matchers:
	- type: status
	status:
	- 401
	- 403