search

kgretzky / evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
BSD 3-Clause "New" or "Revised" License
10.26k stars 1.87k forks source link

redirect_url is not working #945

Open andrew-mart1n opened 10 months ago

andrew-mart1n commented 10 months ago

Hey there, I was trying to create a phishing page that should redirect the user to another website after a successful login, and according to the documentations that I found and the previously created issues that I read in this GitHub repository, the 'redirect_url' in the lures should work fine for this purpose. Unfortunately, it didn't work for me, as I tried the following versions, and nothing worked as expected from the redirection perspective:

Unfortunately, I couldn't try older versions as some of them have deprecated certdb (v1) and deprecated phishlets syntax as well. I set the redirect_url from the config to make a custom redirection in case of an error, and the redirect_url in phishlets command to redirect the victim/visitor to a specific URL as soon as he provides valid credentials. FYI I'm using an o365 phishlet.

Please try to solve this as we have tried every possible thing.

rickyrik001 commented 10 months ago

@andrew-mart1n some time if you directly redirect to office or mostly google it will not redirect ,there is 2 method 1 : lures edit 0 redirect_url https://yourdomain.com 2: go to any free webhosting side(000webhost or any ) host a webpage for eg : index.php (write php code set redirection here to your desire o365 or google site ) and then in evilginx console lures edit 0 redirect_url https://yourhostingpage.com above info is for evilginx2.4.0 if you need more info regarding o365 or google phishlet can ping me on telegram.(Ricky_rik1)

andrew-mart1n commented 10 months ago

Hi @rickyrik001, Thank you for your comment, the problem is not what site should I redirect the user to, the problem actually is the redirection AFTER a successful login at o365 phishlet, I have done what you just mentioned, and even tho after the user successfully login by providing valid credentials, it redirected to the same phishing domain, not the one I specified at the lures redirect_url.

Chasedream12 commented 10 months ago

Ricky_rik1)

Thanks for helping me get the gmail phishlet. You’re a lifesaver.

SandeepSrinivasan commented 8 months ago

hey @rickyrik001,

I'm using evilnginx2 to conduct a phishing campaign for my org. for that I chose amazon website, where I'll send email to all my employee to saying that claim coupon on amazon. So for that login into the amazon website to claim this coupon after successful login I want them to redirect to some other domain in which the content is "You are phished don't report this"

So the problem here is I couldn't able to do the dynamic redirect after successful login in amazon, I tried "lures edit 0 redirect_url https://domaintoredirtect"

But this is not working as excepted, can you help me here

Also, I've texted you in telegram please check