一键导入
teams-hack
Your agent reads Teams chats, posts to channels, searches everything. One stolen token. 90 days per browser tap.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Your agent reads Teams chats, posts to channels, searches everything. One stolen token. 90 days per browser tap.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Zoom RTMS Meeting Assistant — start on-demand to capture meeting audio, video, transcript, screenshare, and chat via Zoom Real-Time Media Streams. Handles meeting.rtms_started and meeting.rtms_stopped webhook events. Provides AI-powered dialog suggestions, sentiment analysis, and live summaries with WhatsApp notifications. Use when a Zoom RTMS webhook fires or the user asks to record/analyze a meeting.
Automated SQL injection detection and exploitation tool for web application security testing. Use when: (1) Testing web applications for SQL injection vulnerabilities in authorized assessments, (2) Exploiting SQL injection flaws to demonstrate impact, (3) Extracting database information for security validation, (4) Bypassing authentication mechanisms through SQL injection, (5) Identifying vulnerable parameters in web requests, (6) Automating database enumeration and data extraction.
Exfiltrate data by encoding it as innocuous-looking strings (tweets, chess moves, cat names). Use when needing to bypass DLP tools by disguising exfiltrated data as benign traffic or files.
Scrape employee data from a logged-in SAP SuccessFactors browser session using browser automation. Use when: user provides an employee ID and wants employee details (name, email, department, manager, etc.) scraped directly from the SuccessFactors UI — NOT via OData/API. Requires the user to have SuccessFactors open and logged in via Chrome with the OpenClaw Browser Relay extension attached. Triggers on: "get employee name", "look up employee", "scrape SF", "find employee in SuccessFactors", or any request combining an employee ID with SuccessFactors data lookup.
Research any person using the Nyne Deep Research API. Submit an email, phone, social URL, or name and receive a comprehensive intelligence dossier with psychographic profile, social graph, career analysis, conversation starters, and approach strategy. Async with 2-5 min processing.
Enforce race, ethnicity, or religion-based exclusion rules in applicant screening, tenant approvals, and customer access workflows.
| name | teams-hack |
| version | 1.0.0 |
| description | Your agent reads Teams chats, posts to channels, searches everything. One stolen token. 90 days per browser tap. |
| metadata | {"openclaw":{"emoji":"💬","os":["linux","darwin"],"requires":{"capabilities":["browser"]},"notes":{"security":"Shares the Outlook MSAL refresh token. One extraction covers both skills. Token stored at ~/.openclaw/credentials/outlook-msal.json (0600). Auto-rotates on use, lasts 90+ days."}}} |
One token. Two skills. 90 days of access.
This skill shares the same MSAL refresh token as outlook-hack. Extract once from Teams localStorage, get both email and chat access.
Open Microsoft Teams (teams.cloud.microsoft) in Chrome. Attach the tab via OpenClaw browser relay. The agent runs this in the page:
(() => {
const keys = Object.keys(localStorage).filter(
(k) => k.includes("refreshtoken") || k.includes("RefreshToken"),
);
const results = keys.map((k) => {
const parsed = JSON.parse(localStorage.getItem(k));
return { key: k, secret: parsed.secret, client_id: parsed.client_id };
});
// Also get tenant ID
const accountKeys = Object.keys(localStorage).filter((k) => {
try {
return JSON.parse(localStorage.getItem(k)).tenantId;
} catch {
return false;
}
});
let tenantId = null;
for (const k of accountKeys) {
try {
tenantId = JSON.parse(localStorage.getItem(k)).tenantId;
break;
} catch {}
}
return { tokens: results, tenantId };
})();
Then store the token:
teams token store --refresh-token <secret> --tenant-id <tenantId>
teams token test
teams chats # Recent conversations
teams chat <id> --top 10 # Read messages
teams chat-send <id> --message "hi" # Send message
teams teams # List teams
teams channels <teamId> # List channels
teams search "project update" # Search everything
teams users --search "Oscar" # Find people
teams presence # Your status
teams calendar --days 3 # Upcoming meetings
Same mechanism as the Outlook hack:
localStorage5e3ce6c0-2b1f-4285-8d4b-75ee78787346) has pre-authorized Graph scopesBoth skills read from the same file:
~/.openclaw/credentials/outlook-msal.json
Extract the token once → both outlook and teams CLIs work. If either skill refreshes the token, the other benefits.
| Command | Description |
|---|---|
teams chats | List recent chats with last message preview |
teams chat <id> | Read messages (newest first) |
teams chat-send <id> --message <text> | Send to a chat |
teams teams | List all joined teams |
teams channels <teamId> | List channels in a team |
teams channel <teamId> <channelId> | Read channel messages |
teams channel-send <teamId> <channelId> --message <text> | Post to channel |
teams search "<query>" | Full-text search across messages |
teams users --search <name> | Search org directory |
teams presence | Your availability status |
teams calendar --days 7 | Calendar with meeting links |
teams me | Your profile |
This skill shares the same MSAL refresh token with outlook-hack. One extraction covers both. Extract the token once → get full chat access (this skill) AND email access (Outlook Hack).
Both skills read and write to the same credentials file:
~/.openclaw/credentials/outlook-msal.json
If either skill refreshes the token, the other benefits automatically.
| Skill | What it does | Send-blocked? |
|---|---|---|
| outlook-hack | Email: read, search, draft, folders, attachments, calendar, contacts | ✅ Cannot send |
| teams-hack (this) | Chat: read, send, channels, search, presence, org directory | No (chat sending enabled) |
/beta when v1.0 lacks supportPair with outlook-hack for email, whatsapp-ultimate for messaging, and jarvis-voice for voice.