search

kgretzky / evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
BSD 3-Clause "New" or "Revised" License
10.94k stars 1.97k forks source link

Cannot Phish the Credentials for Amazon #130

Closed Yash0day closed 5 years ago

Yash0day commented 5 years ago

The framework is working fine for Outlook or Linkedin phishlets, But getting nothing for Amazon.

amazon4

The Phishing site is working fine but after the victim enters his credential, the submit button of the Phishing site lands to the original Amazon site - https://amazon.com/ap/sign.

The "session" section of the framework shows like this:

amazon5

My question is what is happening behind the scene?How to get the framework working for phishing using Amazon phishlet?

rent48bnb commented 5 years ago

I have the same problem phish

maisonmargiela0 commented 5 years ago

I have the same problem!!! CAN ANYONE RESPOND TO THIS PROBLEM PLEASE??

THANK YOU!!

maisonmargiela0 commented 5 years ago

I have the same problem phish

HI rent48bnb,

Did you solve the problem? I have the same issue!

Thank you

rent48bnb commented 5 years ago

No, I try now to make a new phishlets of airbnb...but I don't know to make it....you have idea? Thanks you

kgretzky commented 5 years ago

Phishlet author needs to fix it if he/she wants. You can submit a fix as a PR if you want to contribute. Closing since there is no solution coming.