Hiding GoPhish from the boys in blue! See my blog article linked below for details on all the changes made during compilation of GoPhish before using!
GoPhish by default tips your hand to defenders and security solutions. The container here strips those indicators and makes other changes to hopefully evade detection during operations.
Getting the container up and running is very simple.
Run the following one-liner to clone the repository and build the container:
git clone https://github.com/puzzlepeaches/sneaky_gophish && \
cd sneaky_gophish && \
docker build -t sneaky_gophish .
To actually run the container headlessly, run the following command:
docker run -itd --name sneaky_gophish -p 3333:3333 -p 80:80 sneaky_gophish
Thank god that GoPhish doesn't use a universal default password anymore. To get the admin credentials for the image after running it, issue the following command:
docker logs sneaky_gophish | grep password
You should now be able to navigate to the GoPhish administrator interface at the URL listed below if you are running this on your workstation: