phishery
Basic Auth Credential Harvester with Word Doc Template Injector
Install
- All systems
-
curl cmd.cat/phishery.sh
- Kali Linux
-
apt-get install phishery
- Dockerfile
- dockerfile.run/phishery
phishery
Basic Auth Credential Harvester with Word Doc Template Injector
This package contains a Simple SSL Enabled HTTP server with the primary purpose of phishing credentials via Basic Authentication. The power of phishery is best demonstrated by setting a Word document's template to a phishery URL. This causes Microsoft Word to make a request to the URL, resulting in an Authentication Dialog being shown to the end-user. The ability to inject any .docx file with a URL is possible using phishery's -i [in docx], -o [out docx], and -u [url] options.