Social Engineering

Exploiting the weak minds of humans.

Tool

Details

Gophish is a powerful open source framework that allows you to start a phishing campaign.

Man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection.

evilgophish

evilginx + gophish

cuddlephish

Weaponized Browser-in-the-Middle (BitM). Stream a video of your browser to the user’s browser and log every input.

social-engineer-toolkit

Framework open-source designed for social engineering. SET has a number of custom attack vectors that allow you to make a believable attack quickly.

Caller ID spoofing techniques (via VoIP)
SIM swapping
Homograph URLs
Prompt Bombing (MFA)
USB Dropping
Watering Hole

Website Copier

wget

wget -E -k -K -p -e robots=off -H -D <DOMAIN> -nd "<URL_PAGE>"

httrack

httrack <URL-PAGE>

goclone

goclone <URL-PAGE>

Last updated 3 days ago

Was this helpful?