Jump to content
YOUR-AD-HERE
HOSTING
TOOLS

Locked Gophish v0.12 - Open-Source Phishing Toolkit

itsMe

By MASTERitsMe
in Pentesting

 Share

Recommended Posts

itsMe Master Hacker

MASTERitsMe

Posted
Posted

This is the hidden content, please

Gophish is an open-source phishing toolkit designed for businesses and penetration testers. It provides the ability to quickly and easily setup and executes phishing engagements and security awareness training.

The idea behind gophish is simple – make industry-grade phishing training available to everyone. “Available” in this case means two things –

    Affordable – Gophish is open-source software that is completely free for anyone to use.
    Accessible – Gophish is written in the Go programming language. This has the benefit that gophish releases are compiled binaries with no dependencies. In a nutshell, this makes installation as simple as “download and run”!

Changelog v0.12

Attachment Tracking

This has been a long time requested feature, and we’re super excited to release it! We’ve added the ability to add gophish variables to a number of file types which can be attached to emails. As a trivial example it is possible to include Hello {{.FirstName}}, please click here: {{.URL}} to a Word document, or with a little more effort add tracking pixels to documents. This will allow notification of when users have opened attached files, or enabled macros in Office documents. We currently support the following file extensions: docx, docm, pptx, xlsx, xlsm, txt, html, ics. Please see the documentation for more guidance and examples.
Inline Image Attachments #1525

Images in emails are now marked as embedded rather than attached, so email clients don’t show them as attachments. This is a great addition to improve the quality of campaigns. Thanks @dzsibi
Custom Sender Envelopes #2334

We’ve added the ability to specify an envelope sender in templates. If left empty, it will fallback to the SMTP-From in the Sender-settings. This can be used to pass SPF-checks but still send a spoofing email. Thanks @ChessSpider and @ptitdoc
Added functionality to lock accounts #2060

Added minor functionality to display last login time for each user in the User Management page and the ability to lock user accounts.
Open Redirect #2262

Fixed a minor Open Redirect issue. Thanks @Kirill89

This is the hidden content, please

Link to comment
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.