SPF is nothing but a SpeedPhish Framework tool designed using a python to allow for quick recon and deployment of simple social engineering phishing exercises.
Also Read Ghost Phisher – Wireless & Ethernet Attack Software Application
Run the below command to install the SPF tool;
pip install dnspython
pip install pycrypto
apt-get install python-twisted-web
apt-get install phantomjs
git clone --recursive https://github.com/tatanus/SPF.git
usage: spf.py [-h] [-f <list.txt>] [-C <config.txt>] [--all] [--test] [-e]
[-g] [-s] [--simulate] [-w] [-W] [-d <domain>]
[-c <company's name>] [--ip <IP address>] [-v] [-y]
optional arguments:
-h, --help show this help message and exit
-d <domain> domain name to phish
-c <company's name> name of company to phish
--ip <IP address> IP of webserver defaults to [192.168.1.124]
-v, --verbosity increase output verbosity
input files:
-f <list.txt> file containing list of email addresses
-C <config.txt> config file
enable flags:
--all enable ALL flags... same as (-e -g -s -w)
--test enable all flags EXCEPT sending of emails... same as
(-e -g --simulate -w -y -v -v)
-e enable external tool utilization
-g enable automated gathering of email targets
-s enable automated sending of phishing emails to targets
--simulate simulate the sending of phishing emails to targets
-w enable generation of phishing web sites
-W leave web server running after termination of spf.py
misc:
-y automatically answer yes to all questions
cd spf
python spf.py --test -d example.com
or to just test the websites:
cd spf
python web.py default.cfg
DerbyCon 2015 Video
BsidesLV 2015 Video
BsidesKnox 2015 Video
Video of sample usage
Overview WhatsMyName is a free, community-driven OSINT tool designed to identify where a username exists…
Managing disk usage is a crucial task for Linux users and administrators alike. Understanding which…
Efficient disk space management is vital in Linux, especially for system administrators who manage servers…
Knowing how to check directory sizes in Linux is essential for managing disk space and…
Managing user accounts is a core responsibility for any Linux administrator. Whether you’re securing a…
Linux offers powerful command-line tools for system administrators to view and manage user accounts. Knowing…