Zphisher-GUI-Back_office is a plugin where you can see in real time the victims of your phishing campaign, you just have to change the Zphisher files for these. Easy!
This tool creates a graphical back office for the zphish tool (although it is not 100% necessary to use this tool, you can use these files by hosting it on a localhost).
If you have an api key from haveibeenpwned.com you have to insert it in the file “api_key.txt” in the directory “programa interprete”, in this way the back-office will tell you which accounts are exposed on the internet.
You can also use this plugin by hard sharing the project by Ngrok from your LocalHost without using Zphisher.
This plugin comes with a sample login page, in this case from Office 365, you can use any Zphisher template for this plugin, using Ngrok to share your localhost.
You can see if the inserted account is exposed on the internet:
-Total number of accounts and “Pwned” accounts:
-Evaluation of security in the passwords of all the inserted accounts:
garak checks if an LLM can be made to fail in a way we don't…
Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…
ADCFFS is a PowerShell script that can be used to exploit the AD CS container…
Tartufo will, by default, scan the entire history of a git repository for any text…
Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…
A data hoarder’s dream come true: bundle any web page into a single HTML file.…