Closed spirillen closed 3 weeks ago
Thanks to @g0d33p3rsec for this one
Impersonate gmail
http://43.156.237.181/v3/signin/identifier?continue=https%3A%2F%2Faccounts.google.com%2F%3F%26xrealip%3D185.220.101.42&followup=https%3A%2F%2Faccounts.google.com%2F%3F%26xrealip%3D185.220.101.42&ifkv=AS5LTASF7_j6PXASk16sciT7GgJORZHSTJRpXcOj3XMnMzPaxHyl4FjcnMm8CASnEBLji-TSMRzMzg&passive=1209600&xrealip=185.220.101.42&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S352457725%3A1720010903967641&ddm=0
32.181.237.156.43|phishing
null
https://github.com/mitchellkrogza/phishing/pull/436
N/A
Comments
Thanks to @g0d33p3rsec for this one
Impersonate gmail
Wildcard domain records
Sub-Domain records
Hosts (RFC:953) specific records, not used by DNS RPZ firewalls
SeafeSearch records
Screenshots
Screenshot
![image](https://github.com/mypdns/matrix/assets/44526987/0912c748-643e-4f4e-afa4-c91693d010fe)Links to external sources
logs from uBlock Origin
N/A