Tools used to inspect a website when creating phishlets

kgretzky / evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

BSD 3-Clause "New" or "Revised" License

10.72k stars 1.94k forks source link

Tools used to inspect a website when creating phishlets #230

Closed littlephild closed 5 years ago

littlephild commented 5 years ago

I am learning how to create phishlets for this tool but I am not sure what's the best tool to use for finding the right cookie to captcha.

Thanks in advance

kgretzky commented 5 years ago

You can use Chrome's web inspector or Burp proxy for that to inspect traffic.

littlephild commented 5 years ago

@kgretzky Thanks