[tags][/tags]
[short_descr]Standalone MITM attack framework used for phishing login credentials along with session cookies.[/short_descr]
[link] https://github.com/kgretzky/evilginx2 [/link]
[long_descr]
Evilginx is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection.
gwen001
commented
1 year ago
[tags][/tags] [short_descr]Standalone MITM attack framework used for phishing login credentials along with session cookies.[/short_descr] [link] https://github.com/kgretzky/evilginx2 [/link] [long_descr] Evilginx is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection.
This tool is a successor to Evilginx, released in 2017, which used a custom version of nginx HTTP server to provide man-in-the-middle functionality to act as a proxy between a browser and phished website. Present version is fully written in GO as a standalone application, which implements its own HTTP and DNS server, making it extremely easy to set up and use. [/long_descr] [image] https://raw.githubusercontent.com/gwen001/offsectools_www/main/tmp/fd76f470600819484b66756e41d0cd2d.png [/image] [image] https://raw.githubusercontent.com/gwen001/offsectools_www/main/tmp/215196cb12fe0d69aa12c0f1d617f305.png [/image]