{"id":2208,"date":"2015-04-25T03:23:40","date_gmt":"2015-04-24T19:23:40","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=2208"},"modified":"2015-04-25T03:23:47","modified_gmt":"2015-04-24T19:23:47","slug":"oat-microsoft-ocs-assessment-tool-office-communication-server","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2015\/04\/oat-microsoft-ocs-assessment-tool-office-communication-server\/","title":{"rendered":"OAT &#8211; Microsoft OCS Assessment Tool (Office Communication Server)"},"content":{"rendered":"<p>OAT is an Open Source Microsoft OCS Assessment Tool designed to check the password strength of Lync and Microsoft Office Communication Server users. After a password is compromised, OAT demonstrates potential UC attacks that can be performed by legitimate users if proper security controls are not in place.<\/p>\n<p align=\"center\"><img decoding=\"async\" src=\"https:\/\/farm8.staticflickr.com\/7719\/17257264151_0a269863b9.jpg\" alt=\"OAT - Microsoft OCS Assessment Tool (Office Communication Server)\" \/><\/p>\n<p>We first wrote about <a href=\"http:\/\/OAT (OCS Assessment Tool) \u2013 Office Communication Server Security Assessment Tool\">OAT when it was v1.0 and just came out in 2009<\/a>.<\/p>\n<p>OAT has a user friendly tabbed interface that begins with a password strength test feature. Once the OAT user has successfully elicited the password, attack modules from subsequent tabs can be used for launching UC attacks against valid, registered Lync and OCS users.<\/p>\n<h3>New in OAT v3.0<\/h3>\n<ul>\n<li>Lync Support<\/li>\n<li>Improved speed of the online dictionary attack<\/li>\n<li>Fixed issues with play spam audio for call walking<\/li>\n<li>Minor graphical enhancements<\/li>\n<li>New Active Directory Options<\/li>\n<\/ul>\n<h3>Features<\/h3>\n<ul>\n<li>Online Dictionary Attack<\/li>\n<li>Presence Stealing<\/li>\n<li>Contact List Stealing<\/li>\n<li>Targeted IM Flood<\/li>\n<li>Targeted Call Walk<\/li>\n<li>Communicator DoS<\/li>\n<li>Audio Call Spam<\/li>\n<li>Report Generation<\/li>\n<li>OCS 2007 &#038; OCS 2007 R2<\/li>\n<\/ul>\n<p>You can download OAT v3.0 here:<\/p>\n<p><a href=\"http:\/\/sourceforge.net\/projects\/voat\/files\/OAT-inst-3.05\/OAT-inst-3.05.zip\/download\">OAT-inst-3.05.zip<\/a><\/p>\n<p>Or read more <a href=\"http:\/\/voat.sourceforge.net\/\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>OAT is an Open Source Microsoft OCS Assessment Tool designed to check the password strength of Lync and Microsoft Office Communication Server users. After a password is compromised, OAT demonstrates potential UC attacks that can be performed by legitimate users if proper security controls are not in place. We first wrote about OAT when it [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"OAT is an Open Source Security Microsoft OCS Assessment Tool designed to check the password strength of Lync and Microsoft Office Communication Server users","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[9,4],"tags":[2865,2980,1054,1507,1508],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/2208"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=2208"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/2208\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=2208"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=2208"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=2208"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}