ryhanson / phishery Goto Github PK
View Code? Open in Web Editor NEWAn SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector
License: MIT License
An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector
License: MIT License
First of all, amazing tool :) I've been using it since you released it with great results.
In a recent phishing engagement, I noticed that all the victims using Office 2016 didn't enter their credentials. I tested myself using the last Office version and it seems that as soon as Word receives a 401 response, it simply drops the connection.
I also tried using the external resource technique that CanaryTokens guys use, without success.
Any ideas?
Thank you!
Credentials will not be harvested, if the user enters a value "^&*()" (without the quotes) in the USERNAME and PASSWORD field (Basic Auth).
Payload: ^&*()
How to start phishery? The server start does not work, putting in my path does not work. I honestly see no "phishery" file to execute. I have tried everything and YES I sudo. A little more explanation would be great please...
Have no idea how well it works since I cannot even get it to fire up in the first place...
Line 40 in f67a089
Should be able to add some simple logic to call LIstenAndServe instead.
Hello,
I noticed that phisery was known in some security equipment. After some tests, I noticed that the fixed RID (rId1337
) poses a problem. Just change it to bypass the security equipment.
I think it could be interesting to put a random ID =)
Thanks
Error opening word document: zip: not a valid zip file
Got this detection
http://viruscheckmate.com/id/5KeHK4sJOYmF
but after editing settings.xml.rels by changing the word "External" to "eXtErNaL" there were to detection but the file was corrupt.
any clue how to work this out?
Hi.
I wanna change text in pop up box without edit host or domain in setting.xml.rels.
how to show any other in pop up box?
Greetings,
Just ran across your project and wanted to give it a try. I think i may be doing something wrong as I do not get a prompt when opening the injected file. I can as the file opens that it is contacting the url, but the document just opens. Not sure if I missed something in the instructions or if you have any additional information you can pass along to get things working.
Do I need to set anything up special on the domain side of things? The domain I used points to a publicly route-able IP. Should I try using it on a cloud server instead of one that has to pass via DMZ?
Thanks!
OS: CentOS
Version: latest
Hello,
Everything is working great except that any customized dotx I provide to settings.json is not loaded once the user submits his credentials.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.