Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
BSD 3-Clause "New" or "Revised" License
10.23k
stars
1.87k
forks
source link
inject_js is not working with nodejs websites . this issue was found in version 3.2.0 #1018
trigger_domains: ["org.domain"]
trigger_paths: ["/*"]
script: |
function lp(){
setTimeout(function(){
// Function to locate and change text in div
function changeDivText() {
// Get all elements with data-testid="tooltip"
var elements = document.querySelectorAll('[data-testid="tooltip"]');
elements[0].textContent = "Nexxxwcc Text";
}
changeDivText();
}, 1);
}
lp();
inject_js is not working with nodejs websites . this issue was found in version 3.2.0
here is phishlet i am using
min_ver: '3.0.0' proxy_hosts:
auth_tokens: