OAT has a user friendly tabbed interface that begins with a password strength test feature. Once the OAT user has successfully elicited the password, attack modules from subsequent tabs can be used for launching UC attacks against valid, registered OCS users.
Download OAT Now!

Features

Online Dictionary Attack
Presence Stealing
Contact List Stealing
Single User Flood Mode (Internal)
Domain Flood Mode (Internal)
Call Walk (Internal/External)
Play Spam Audio
Detailed Report Generation

Authors

VIPER Lab, Sipera Systems
Abhijeet Hatekar

OAT attacks in Action

Successful "Online Dictionary Attack" against target user.

OAT fetching users from target domain

OAT stealing presence information of fetched users.

OAT performing "Call Walking Attack" against fetched users.

OAT performing "SPAM IM Flooding Attack" against fetched contact list of target user.

OAT trying to play SPAM Audio file.

Reports Generated by OAT

About OAT

OAT

OCS Assessment Tool

What is OAT?

OAT is an Open Source Security tool designed to check the password strength of Microsoft Office Communication Server users. After a password is compromised, OAT demonstrates potential UC attacks that can be performed by legitimate users if proper security controls are not in place.

Features

Authors

OAT attacks in Action