M365 Conditional Access Policy Bypass OST (Offensive Tooling) Powered by : Vanitas & Mittcheng
Oblivion Token is a focused offensive-research utility that makes Microsoft 365 Conditional Access Policy (CAP) bypass testing practical, repeatable, and scriptable. Designed for red-teamers and security researchers, it systematizes token-centric workflows and exercises policy edge cases to expose where device, network, or app-context assumptions fail including realistic test paths against Microsoft first-party (built-in) applications.
The tool issues legitimate OpenID Connect (OIDC) ID tokens and OAuth2 access tokens that are directly consumable by Microsoft Graph API endpoints, and it integrates seamlessly with Microsoft Graph PowerShell and GraphRunner for scripted verification, automation, and post-exploitation actions via M365 target tenants.
Source distribution. This repository includes OblivionToken.py and supporting configuration files for authorized research use.
Safety/Scope: Oblivion Token is for authorized testing only with explicit permission.
Scope Limitation: Research and token workflows in this project are limited to Microsoft Graph API resources/scopes. Non-Graph APIs (for example, Azure Management or Intune admin endpoints) are out of scope.
PS C:\OblivionToken> python3 -m pip install --upgrade pip
PS C:\OblivionToken> python3 -m pip install -r requirements.txt
PS C:\OblivionToken> python3 OblivionToken.py- Authorization Orchestration: Manages desktop-equivalent redirects and preserves session continuity.
- Client Profile Catalog: Reads tenant-ready registrations from
clients.jsonwith optional scope overrides. - Credential Flexibility: Supports interactive prompts or sanctioned secrets in
creds.json. - Adaptive MFA Handling: Guides MFA Push Notification, Microsoft Authenticator OTP, and SMS Verifications until completion or timeout.
- Evidence Output: Prints access and refresh tokens, scope summaries, and optional
/mecontext. - Refresh Token Redemption: Redeems an existing refresh token against a selected target client or a custom Client ID.
- Token-centric orchestration: for repeatable CAP bypass experiments.
- First-Party App Support: Compatible with Microsoft’s built-in and first-party applications.
- Graph API Integration: Emits valid OIDC ID tokens and OAuth2 access tokens for use with Microsoft Graph API post-exploitation automation (Especially beneficial convenient for Microsoft Graph PowerShell module and GraphRunner offensive tool).
- Ethical & Verifiable Use: Designed for authorized testing, with transparent, reproducible results.
- Machine host with outbound access to Microsoft identity and Microsoft Graph endpoints.
clients.jsonpopulated with tenant-approved registrations and stored besideOblivionToken.py.- Optional
creds.jsoncontaining sanctioned credentials for unattended lab runs.
PS C:\OblivionToken> python3 OblivionToken.py
/$$$$$$ /$$ /$$ /$$ /$$ /$$$$$$$$ /$$
/$$__ $$| $$ | $$|__/ |__/ |__ $$__/ | $$
| $$ \ $$| $$$$$$$ | $$ /$$ /$$ /$$ /$$ /$$$$$$ /$$$$$$$ | $$ /$$$$$$ | $$ /$$ /$$$$$$ /$$$$$$$
| $$ | $$| $$__ $$| $$| $$| $$ /$$/| $$ /$$__ $$| $$__ $$ | $$ /$$__ $$| $$ /$$/ /$$__ $$| $$__ $$
| $$ | $$| $$ \ $$| $$| $$ \ $$/$$/ | $$| $$ \ $$| $$ \ $$ | $$| $$ \ $$| $$$$$$/ | $$$$$$$$| $$ \ $$
| $$ | $$| $$ | $$| $$| $$ \ $$$/ | $$| $$ | $$| $$ | $$ | $$| $$ | $$| $$_ $$ | $$_____/| $$ | $$
| $$$$$$/| $$$$$$$/| $$| $$ \ $/ | $$| $$$$$$/| $$ | $$ | $$| $$$$$$/| $$ \ $$| $$$$$$$| $$ | $$
\______/ |_______/ |__/|__/ \_/ |__/ \______/ |__/ |__/ |__/ \______/ |__/ \__/ \_______/|__/ |__/
Oblivion Token: M365 Conditional Access Policy Bypass OST (Offensive Tooling)
Powered by : Vanitas & MittchengProvide the requested username and password (unless stored in creds.json), select a client profile.
Demo_No_MFA.mp4
Enter username (UPN/email): user@tenant
Enter password:
Select Target Clients:
1) Microsoft Intune Company Portal
2) Microsoft Authenticator App
3) ZTNA Network Access Client
4) ZTNA Network Access Client -- Private
5) ZTNA Network Access Client -- M365
6) UnPublic App [1]
7) UnPublic App [2]
Enter number: 2Provide the requested username and password (unless stored in creds.json), select a client profile, and follow any MFA instructions.
Demo_MFA.mp4
Enter username (UPN/email): user@tenant
Enter password:
Select Target Clients:
1) Microsoft Intune Company Portal
2) Microsoft Authenticator App
3) ZTNA Network Access Client
4) ZTNA Network Access Client -- Private
5) ZTNA Network Access Client -- M365
6) UnPublic App [1]
7) UnPublic App [2]
Enter number: 2
[-] MFA Required.
Choose Authentication Method:
1) Push notification
2) Authenticator One-Time Password Code
3) SMSIssues a push notification, monitors Microsoft’s verification status, and resumes authorization when the request is approved or reports a timeout on failure.
[-] MFA Required.
Choose Authentication Method:
1) Push notification
2) Authenticator OTP
3) SMS
Enter number: 1
Approve sign-in with number (You have 40s to Proceed): 82Prompts for a six-digit app code, validates the entry via Microsoft’s verification service, and continues the flow once confirmed.
[-] MFA Required.
Choose Authentication Method:
1) Push notification
2) Authenticator OTP
3) SMS
Enter number: 2
Enter 6-digit Authenticator One-Time Password Code: 112233Requests a texted challenge, tracks Microsoft’s response, and completes the sign-in when the code is accepted.
[-] MFA Required.
Choose Authentication Method:
1) Push notification
2) Authenticator OTP
3) SMS
Enter number: 3
Enter 6-digit SMS Verification Code: 112233This feature is optional and primarily intended for advanced research scenarios.
By default, Oblivion Token uses a standard Windows/Edge User-Agent string for all authorization flows.
Operators may override this behavior to emulate specific devices or browsers when testing Conditional Access Policy reactions to different client signals.
--devicepicks a built-in platform signature (defaultWindows).--browserswaps the browser fingerprint for that device (defaults to the common choice per platform).--user-agentaccepts a full custom string when you need an exact header.--list-user-agentsprints every device/browser combination and their corresponding strings, then exits.- Example:
python3 OblivionToken.py --device Mac --browser Safari
PS C:\OblivionToken> python3 OblivionToken.py -h
usage: OblivionToken.py [-h] [--user-agent USER_AGENT_OVERRIDE] [--device DEVICE] [--browser BROWSER] [--list-user-agents]
[--refresh-token REFRESH_TOKEN_VALUE]
Oblivion Token: M365 Conditional Access Policy Bypass Research Tool
options:
-h, --help show this help message and exit
--user-agent USER_AGENT_OVERRIDE
Override the User-Agent string explicitly.
--device DEVICE User-Agent device profile (default: Windows). Options: Mac, Windows, AndroidMobile, iPhone, Linux, OS/2,
PlayStation. Use --list-user-agents for mappings.
--browser BROWSER User-Agent browser signature. Defaults to the common browser for the selected device. Options: Android,
IE, Chrome, Firefox, Edge, Safari.
--list-user-agents Print available device/browser combinations and exit.
--refresh-token REFRESH_TOKEN_VALUE
Redeem an existing refresh token using <token>, /path/to/file, or refresh_token=<token>.Use refresh-token mode when you already have a refresh token and want to redeem it against a selected target profile from clients.json or a custom Client ID.
--refresh-token <token>accepts a raw refresh token directly.--refresh-token /path/to/token.txtloads the refresh token from a local file.--refresh-token refresh_token=<token>is also supported for compatibility with copy-pasted parameter strings.- In refresh-token mode, the tool prompts you to choose a target client from
clients.jsonor enter a custom Client ID. - FOCI details are printed only when the token response includes a
fociindicator.
PS C:\OblivionToken> python3 OblivionToken.py --refresh-token 1.ASYA...
Select Target Clients for Refresh Token Redemption:
1) Microsoft Intune Company Portal
2) Microsoft Authenticator App
3) ZTNA Network Access Client
4) ZTNA Network Access Client -- Private
5) ZTNA Network Access Client -- M365
6) UnPublic App [1]
7) UnPublic App [2]
8) Custom Client ID
Enter number: 8
Enter Client ID: 8ec6bc83-69c8-4392-8f08-b3c986009232Example success summary with FOCI:
======= Successfully Redeemed Tokens =======
[*] MS Graph API Access Token:
eyJ0eXAiOiJ...<snip>
[*] Refresh Token:
1.ASYAn98Rj...<snip>
=========== Oblivion Token Result ===========
Status: SUCCESS
Client: Microsoft Authenticator App
AppId: 4813382a-8fa7-425e-ab75-3b753aab3abb
Scope: openid offline_access
FOCI: Present
Family Refresh Token: Supported by token response
=============================================
Example failure summary:
=========== Oblivion Token Result ===========
Status: FAILED - Refresh token redemption rejected
Client: Custom Client ID
AppId: 8ec6bc83-69c8-4392-8f08-b3c986009232
Reason: Provided grant is invalid or malformed.
=============================================
======= Successfully Redeemed Tokens =======
[*] MS Graph API Access Token:
eyJ0eXAiOiJ...<snip>
[*] Refresh Token:
1.ASYAn98Rj...<snip>
=========== Oblivion Token Result ===========
Status: SUCCESS
Client: Microsoft Intune Company Portal
AppId: 9ba1a5c7-f17a-4de9-a1f1-6178c8d51223
Scope: email openid profile https://graph.microsoft.com/Organization.Read.All https://graph.microsoft.com/UserAuthenticationMethod.Read https://graph.microsoft.com/UserAuthenticationMethod.ReadWrite https://graph.microsoft.com/.default
[*] Current User Information:
{
"@odata.context": "https://graph.microsoft.com/v1.0/$metadata#users/$entity",
"businessPhones": [],
"displayName": "John Doe",
...
}
=============================================
clients.json governs client selection and supports the following fields:
| Field | Required | Description |
|---|---|---|
name |
Yes | Friendly display name presented to the operator. |
client_id |
Yes | Application (client) ID registered within Microsoft Entra ID. |
redirect_uri |
Yes | Redirect URI approved for the registration and authorization grant. |
scope |
No | Space-delimited scope string; defaults to openid offline_access. |
Example:
[
{
"name": "Microsoft Intune Company Portal",
"client_id": "9ba1a5c7-f17a-4de9-a1f1-6178c8d51223",
"redirect_uri": "ms-appx-web://Microsoft.AAD.BrokerPlugin/9ba1a5c7-f17a-4de9-a1f1-6178c8d51223"
}
]creds.json provides optional credential reuse for interactive sign-in:
{
"username": "user@tenant",
"password": "P@ssw0rd"
}Tokens emitted by Oblivion Token can authenticate Microsoft Graph workloads without browser prompts.
$token = "eyJhbGciOiJ..." # Access token from Oblivion Token output
$secureToken = ConvertTo-SecureString $token -AsPlainText -Force
Connect-MgGraph -AccessToken $secureToken
Get-MgContext- Enforce least-privilege access on scripts, JSON files, and logs that contain bearer tokens.
- Ensure host clocks, DNS, and outbound routes align with Microsoft identity services to avoid false negatives.
- Oblivion Token is optimized for Microsoft Graph; other cloud APIs may impose additional consent or policy controls.
- Console transcripts expose raw tokens; capture and store them only when policy permits and sanitize afterward.
- Evilginx-based integration for data collection helpers aligned with credential phishing campaigns, tailored for Conditional Access Bypass feature.
This project is licensed under Apache License 2.0.
- Added
--refresh-tokenmode to redeem an existing refresh token against a selected target profile or a custom Client ID. - Supported refresh-token input as a raw token string, a file path, or
refresh_token=<token>compatibility format. - Added compact refresh-token redemption success and failure summaries, including FOCI indicator reporting when present in the token response.
- Transitioned repository distribution from bundled binaries to source-first delivery.
- Added
OblivionToken.pyandrequirements.txtto the repository root. - Updated installation and usage examples to Python execution mode.
- Refined the authentication pipeline and MFA orchestration into a cleaner modular flow for better reliability and maintainability.
- Improved resilience in interstitial/redirect handling and token extraction across varied sign-in responses.
- Enhanced validation and error handling for configuration loading and MFA code input (OTP/SMS format checks).
- Standardized endpoint/constants usage and polished output messaging for a more consistent operator experience.
- Added optional User-Agent override and selection feature for advanced research use (
--user-agent,--device,--browser,--list-user-agents). - This feature allows operators to emulate various platform and browser combinations when evaluating Conditional Access policy behavior.
- The default behavior remains unchanged. If no flags are provided, the tool uses the standard Windows/Edge User-Agent for stable testing.
- Added a video demonstration of the unpublished application (in progress as part of the Microsoft Security Response Center (MSRC) vulnerability investigation process).
- Initial repository creation and documentation setup.
- Added Windows x64 and ARM64 binary distribution (
OblivionToken.exe). - Published core README with overview, usage, MFA workflows, and configuration examples.
- Established research scope limited to Microsoft Graph API resources and scopes.
- Dirk-jan Mollema — Active Directory and Azure AD security researcher
- Fabian Bader — Identity and cloud security researcher
- temp43487580 — Contributor in OAuth and token research
- TokenSmith — JUMPSEC Labs project on Conditional Access bypass research
- Sunny Chau (JUMPSEC Labs) — Creator of TokenSmith and researcher in Microsoft identity security
Oblivion Token is intended strictly for authorized assessments and responsible security research; use only in environments where you have explicit permission.