Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Hello @kgretzky, thank you for that great job, the project is amazing. Is there any documentation or guide on phishlets? I didn't found any explanation on parameters such as what is meaning of "is_landing" and why in ex. facebook.yml "phish_sub" and "orig_sub" are the same and in reddit.yml is not?
Kuba provided quite a bit of information on this project in his blog post at BreakDev Please have a look there, the blog post answers your questions quite throughly.
Hello @kgretzky, thank you for that great job, the project is amazing. Is there any documentation or guide on phishlets? I didn't found any explanation on parameters such as what is meaning of "is_landing" and why in ex. facebook.yml "phish_sub" and "orig_sub" are the same and in reddit.yml is not?