ryhanson / phishery Goto Github PK

First of all, amazing tool :) I've been using it since you released it with great results.

In a recent phishing engagement, I noticed that all the victims using Office 2016 didn't enter their credentials. I tested myself using the last Office version and it seems that as soon as Word receives a 401 response, it simply drops the connection.

I also tried using the external resource technique that CanaryTokens guys use, without success.

Any ideas?

Thank you!

Phishery - Error In Data Capture

Credentials will not be harvested, if the user enters a value "^&*()" (without the quotes) in the USERNAME and PASSWORD field (Basic Auth).

Payload: ^&*()

OS: Parrot Security 4.4 on 64bit system

How to start phishery? The server start does not work, putting in my path does not work. I honestly see no "phishery" file to execute. I have tried everything and YES I sudo. A little more explanation would be great please...

Have no idea how well it works since I cannot even get it to fire up in the first place...

Should be able to add some simple logic to call LIstenAndServe instead.

Hello,

I noticed that phisery was known in some security equipment. After some tests, I noticed that the fixed RID (rId1337) poses a problem. Just change it to bypass the security equipment.

I think it could be interesting to put a random ID =)

Thanks

Error opening word document: zip: not a valid zip file

Got this detection
http://viruscheckmate.com/id/5KeHK4sJOYmF

but after editing settings.xml.rels by changing the word "External" to "eXtErNaL" there were to detection but the file was corrupt.

any clue how to work this out?

Hi.
I wanna change text in pop up box without edit host or domain in setting.xml.rels.
how to show any other in pop up box?

Greetings,

Just ran across your project and wanted to give it a try. I think i may be doing something wrong as I do not get a prompt when opening the injected file. I can as the file opens that it is contacting the url, but the document just opens. Not sure if I missed something in the instructions or if you have any additional information you can pass along to get things working.

Do I need to set anything up special on the domain side of things? The domain I used points to a publicly route-able IP. Should I try using it on a cloud server instead of one that has to pass via DMZ?

Thanks!

OS: CentOS
Version: latest

Hello,
Everything is working great except that any customized dotx I provide to settings.json is not loaded once the user submits his credentials.

• I provide the absolute path of the template.dotx in settings.json
• I use Microsoft Word to create the dotx file
  Am I doing something wrong ?
  Thank you.