Research
SharePoint Hacking Diggity Project
The SharePoint Hacking Diggity Project is an R&D initiative dedicated to investigating the latest tools and techniques in hacking Microsoft SharePoint technologies. Assessment strategies are designed to help SharePoint administrators and security professionals identify common insecure configurations and exposures introduced by vulnerable SharePoint deployments.
Resource Library
Dive into pioneering security research from Bishop Fox Co-Founder Fran Brown
Attack Tools
Attack tools that help SharePoint admins and security professionals identify common insecure configurations and exposures introduced by vulnerable SharePoint deployments.
Presentation Slides
Presentation slides from speaking engagements at various security conferences.
Lead Researcher
Francis Brown
Francis, the Co-founder and Board Member of Bishop Fox, has presented his research at leading conferences such as Black Hat USA, DEF CON, InfoSec World, ToorCon, RSA, and HackCon. His research has been featured in USA Today, Forbes, InformationWeek, and Dark Reading. Francis is the creator of the Tastic RFID Thief (which has appeared on “Mr. Robot”), the Danger Drone, and the SearchDiggity Project.
LinkedIn: https://www.linkedin.com/in/fr...
White Paper
SearchSecurity Securing SharePoint: SharePoint security best practices
Microsoft’s SharePoint application has become a ubiquitous collaboration tool in the enterprise but securing it can be a tricky process. And all too often, companies fail to properly secure their SharePoint deployments, security experts say. In fact, a survey of SharePoint users released earlier this year by European security vendor Cryptzone showed that lax security practices were rampant among those polled. In this special report, we examine some of the issues surrounding SharePoint security and provide tips on SharePoint security best practices.