Step 4 has shown me some things, I’ve tried EVERYTHING on this page: Attacking MS Exchange Web Interfaces – PT SWARM
I also tried looking up the Exchange “CANARY” attack, but, I don’t know how, & couldn’t find a good example. Though the clue (it’s a bird, it’s a plane) was like, you know, canary, a bird. Think that one is too old anyways, sigh maybe i should be thinking super, but, that’s pretty broad. I got db creds too, weren’t good for much, just learning more about the setup. There was a hidden db making for 5 different databases.