Not listening on port 80 & ipv4

kgretzky / evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

BSD 3-Clause "New" or "Revised" License

10.26k stars 1.87k forks source link

Not listening on port 80 & ipv4 #906

Closed lesleyxyz closed 1 year ago

lesleyxyz commented 1 year ago

Hi All,

I have two issues with evilginx2.

It works perfectly on windows, but on Ubuntu 22 it's not listening on port 80, only 443. This port is irresponsive because IIRC port 443 is just a proxy to port 80.

c2admin@c2-server:~$ sudo netstat -tulpn | grep evil
tcp6       0      0 :::443

The next issue is like others pointed out, it's only listening on ipv6. Any advice?

Mrsagacious commented 1 year ago

Hi,

Listening on ipv6 will also work for ipv4 tcp connections too.

If you are using a VirtualBox setup in windows, perhaps the windows version is using port 80 so you are unable to access from a virtual machine.

lesleyxyz commented 1 year ago

Hi,

Listening on ipv6 will also work for ipv4 tcp connections too.

If you are using a VirtualBox setup in windows, perhaps the windows version is using port 80 so you are unable to access from a virtual machine.

Thank you for your reply, it makes sense that ipv6 works for ipv4 connections.

However the issue I'm describing of port 80, that it isn't listened on and port 443 irresponsive, is applicable in following environments:

Debian 11 on bare metal
Ubuntu 22.10 and 20.04 in Azure
Ubuntu 22.04 in VMware Workstation 17

And fyi, yes, I've configured an ip, hostname, and enabled the phishlet

Mrsagacious commented 1 year ago

It seems like a port issue.

perhaps try multiple apps to check all ports opened on the server, and allow port access via Firewalld.