PHP tags not getting inserted in Custom Template

[adityasriv22]

HI ,

I am trying a custom template , I have given the name of input field as UsernameForm and PasswordForm but the php tags is not getting inserted in the template Php is also working mannually opening the url for email open works by uid but not on live campaighn, my application site url setting is http://phishing-frenzy.com Please help.

[zeknox]

What is the file extension of your website files? If the PHP tags are not getting inserted into the website files this would likely be an indication you’re not using PHP website files.

The PHP tags would be prepended to the website files regardless of the input field names.

PHP tags are added only when a campaign goes active.

On Nov 29, 2018, at 11:25 PM, Aditya Srivastava notifications@github.com wrote:

HI ,

I am trying a custom template , I have given the name of input field as UsernameForm and PasswordForm but the php tags is not getting inserted in the template Php is also working mannually opening the url for email open works by uid but not on live campaighn, my application site url setting is http://phishing-frenzy.com Please help.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or mute the thread.

[adityasriv22]

the extensions are .php only

[adityasriv22]

this is my campaigh file directory structure,also tell me the application site url needs a dns entry to the vps or only the phishing site domain to gather creds.

[zeknox]

You need to leverage the ansible branch of this repository. Since you are uploading a zip archive as the website files we have not merged in the latest code to the master branch which addresses adding the PHP tags to PHP files within a zip archive.

https://github.com/pentestgeek/phishing-frenzy/tree/ansible?files=1

https://github.com/pentestgeek/phishing-frenzy/commit/a692691935313cd0157debeb02c34a227ee4d41e

— Brandon McCann

On Nov 30, 2018, at 7:58 AM, Aditya Srivastava notifications@github.com wrote:

this is my campaigh file directory structure,also tell me the application site url needs a dns entry to the vps or only the phishing site domain to gather creds.

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or mute the thread.

[adityasriv22]

How do i do that, do i need to use git pull in the phishing frenzy directory or is there any other command

[zeknox]

You likely just need to run “git checkout ansible” within the phishing frenzy repo.

If running in production mode you likely need to recompile your assets again and restart Apache.

— Brandon McCann

On Nov 30, 2018, at 8:06 AM, Aditya Srivastava notifications@github.com wrote:

How do i do that, do i need to use git pull in the phishing frenzy directory or is there any other command

— You are receiving this because you commented. Reply to this email directly, view it on GitHub, or mute the thread.

[adityasriv22]

I executed the command and visited app url in browser , got this error.

[zeknox]

Since you likely ran the git command as root you need to set file permissions back appropriately.

sudo chown -R www-data:www-data /var/www/phishing-frenzy/

Then restart apache again and test.

[zeknox]

Also you may need to purge some of your tmp and cache files which could be owned by root still if the commands above do not work.

You would run these from within the phishing-frenzy directory.

# rake tmp:pids:clear
# rake tmp:sessions:clear
# rake tmp:sockets:clear
# rake tmp:cache:clear

[adityasriv22]

Hi the app is running, And PHP is getting inserted , thanks for that, But I am geting php code on my website.

I just want to get the stats to work, I am getting email sent in the reports only , no link open or , credentials.

[zeknox]

PHP is not getting rendered properly on the server side. Likely an issue with PHP not installed, or the PHP module not enabled within Apache. This is why you're seeing the raw PHP code vs it being rendered.

Having PHP rendering properly is a dependency to functional stats at this time.

[adityasriv22]

Thanks brandon , apparently the issue was php not rendering only. Everything seems to work fine

Regards

[zeknox]

Awesome, good luck and have fun!