Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
Z4nzu
GitHub Repository: Z4nzu/hackingtool
 Path: blob/master/tools/phishing_attack.py
2371 views
1
import os

2


3
from core import HackingTool, HackingToolsCollection, console

4


5


6
class Autophisher(HackingTool):

7
    TITLE = "Autophisher RK"

8
    SUPPORTED_OS = ["linux"]

9
    DESCRIPTION = "Automated Phishing Toolkit"

10
    INSTALL_COMMANDS = [

11
        "git clone https://github.com/CodingRanjith/autophisher.git",

12
    ]

13
    RUN_COMMANDS = ["cd autophisher && sudo bash autophisher.sh"]

14
    PROJECT_URL = "https://github.com/CodingRanjith/autophisher"

15


16


17
class Pyphisher(HackingTool):

18
    TITLE = "Pyphisher"

19
    DESCRIPTION = "Easy to use phishing tool with 77 website templates"

20
    # Bug 9 fix: pip must reference the full path, not rely on a no-op "cd" call

21
    INSTALL_COMMANDS = [

22
        "git clone https://github.com/KasRoudra/PyPhisher",

23
        "pip3 install --user -r PyPhisher/files/requirements.txt",

24
    ]

25
    RUN_COMMANDS = ["cd PyPhisher && sudo python3 pyphisher.py"]

26
    # Bug 8 fix: PROJECT_URL was a git clone command, not a URL

27
    PROJECT_URL = "https://github.com/KasRoudra/PyPhisher"

28


29


30
class AdvPhishing(HackingTool):

31
    TITLE = "AdvPhishing"

32
    SUPPORTED_OS = ["linux"]

33
    DESCRIPTION = "This is Advance Phishing Tool ! OTP PHISHING"

34
    INSTALL_COMMANDS = [

35
        "git clone https://github.com/Ignitetch/AdvPhishing.git",

36
        # Vuln 2 fix: chmod 777 → chmod +x

37
        "cd AdvPhishing && chmod +x Linux-Setup.sh && bash Linux-Setup.sh",

38
    ]

39
    RUN_COMMANDS = ["cd AdvPhishing && sudo bash AdvPhishing.sh"]

40
    PROJECT_URL = "https://github.com/Ignitetch/AdvPhishing"

41


42


43
class Setoolkit(HackingTool):

44
    TITLE = "Setoolkit"

45
    SUPPORTED_OS = ["linux"]

46
    DESCRIPTION = (

47
        "The Social-Engineer Toolkit is an open-source penetration\n"

48
        "testing framework designed for social engineering."

49
    )

50
    INSTALL_COMMANDS = [

51
        "git clone https://github.com/trustedsec/social-engineer-toolkit/",

52
        "cd social-engineer-toolkit && pip install --user .",

53
    ]

54
    RUN_COMMANDS = ["sudo setoolkit"]

55
    PROJECT_URL = "https://github.com/trustedsec/social-engineer-toolkit"

56


57


58
class SocialFish(HackingTool):

59
    TITLE = "SocialFish"

60
    SUPPORTED_OS = ["linux"]

61
    DESCRIPTION = "Automated Phishing Tool & Information Collector NOTE: username is 'root' and password is 'pass'"

62
    INSTALL_COMMANDS = [

63
        "git clone https://github.com/UndeadSec/SocialFish.git && sudo apt-get install python3 python3-pip python3-dev -y",

64
        "cd SocialFish && sudo python3 -m pip install -r requirements.txt",

65
    ]

66
    RUN_COMMANDS = ["cd SocialFish && sudo python3 SocialFish.py root pass"]

67
    PROJECT_URL = "https://github.com/UndeadSec/SocialFish"

68


69


70
class HiddenEye(HackingTool):

71
    TITLE = "HiddenEye"

72
    SUPPORTED_OS = ["linux"]

73
    DESCRIPTION = (

74
        "Modern Phishing Tool With Advanced Functionality And Multiple Tunnelling Services\n"

75
        "\t[!] https://github.com/DarkSecDevelopers/HiddenEye"

76
    )

77
    INSTALL_COMMANDS = [

78
        # Vuln 2 fix: chmod 777 → chmod 755

79
        "git clone https://github.com/Morsmalleo/HiddenEye.git && chmod -R 755 HiddenEye",

80
        "cd HiddenEye && sudo pip3 install -r requirements.txt && pip3 install pyngrok",

81
    ]

82
    RUN_COMMANDS = ["cd HiddenEye && sudo python3 HiddenEye.py"]

83
    PROJECT_URL = "https://github.com/Morsmalleo/HiddenEye"

84


85


86
class Evilginx3(HackingTool):

87
    TITLE = "Evilginx3"

88
    SUPPORTED_OS = ["linux"]

89
    DESCRIPTION = (

90
        "evilginx is a man-in-the-middle attack framework used for phishing login credentials\n"

91
        "along with session cookies, bypassing 2-factor authentication.\n"

92
        "Requires Go >= 1.18 installed."

93
    )

94
    # Bug 6 fix: removed 'sudo evilginx' (interactive) from INSTALL_COMMANDS

95
    INSTALL_COMMANDS = [

96
        "sudo apt-get install -y git make golang-go",

97
        "go install github.com/kgretzky/evilginx/v3@latest",

98
    ]

99
    RUN_COMMANDS = ["evilginx"]

100
    PROJECT_URL = "https://github.com/kgretzky/evilginx2"

101
    REQUIRES_GO = True

102


103


104
class ISeeYou(HackingTool):

105
    TITLE = "I-See_You"

106
    SUPPORTED_OS = ["linux"]

107
    DESCRIPTION = (

108
        "[!] ISeeYou finds the exact location of a target via social engineering.\n"

109
        "[!] Expose local servers to the internet and decode location from log file."

110
    )

111
    INSTALL_COMMANDS = [

112
        "git clone https://github.com/Viralmaniar/I-See-You.git",

113
        "cd I-See-You && sudo chmod u+x ISeeYou.sh",

114
    ]

115
    RUN_COMMANDS = ["cd I-See-You && sudo bash ISeeYou.sh"]

116
    PROJECT_URL = "https://github.com/Viralmaniar/I-See-You"

117


118


119
class SayCheese(HackingTool):

120
    TITLE = "SayCheese"

121
    SUPPORTED_OS = ["linux"]

122
    DESCRIPTION = "Take webcam shots from target just by sending a malicious link"

123
    INSTALL_COMMANDS = ["git clone https://github.com/hangetzzu/saycheese"]

124
    RUN_COMMANDS = ["cd saycheese && sudo bash saycheese.sh"]

125
    PROJECT_URL = "https://github.com/hangetzzu/saycheese"

126


127


128
class QRJacking(HackingTool):

129
    TITLE = "QR Code Jacking"

130
    SUPPORTED_OS = ["linux"]

131
    DESCRIPTION = "QR Code Jacking (Any Website)"

132
    INSTALL_COMMANDS = [

133
        "git clone https://github.com/cryptedwolf/ohmyqr.git && sudo apt -y install scrot",

134
    ]

135
    RUN_COMMANDS = ["cd ohmyqr && sudo bash ohmyqr.sh"]

136
    PROJECT_URL = "https://github.com/cryptedwolf/ohmyqr"

137


138


139
# Bug 10 fix: WifiPhisher removed from phishing tools — it belongs in wireless_attack.py

140


141


142
class BlackEye(HackingTool):

143
    TITLE = "BlackEye"

144
    SUPPORTED_OS = ["linux"]

145
    DESCRIPTION = "The ultimate phishing tool with 38 websites available!"

146
    INSTALL_COMMANDS = [

147
        "git clone https://github.com/thelinuxchoice/blackeye",

148
    ]

149
    RUN_COMMANDS = ["cd blackeye && sudo bash blackeye.sh"]

150
    PROJECT_URL = "https://github.com/An0nUD4Y/blackeye"

151


152


153
class ShellPhish(HackingTool):

154
    TITLE = "ShellPhish"

155
    SUPPORTED_OS = ["linux"]

156
    DESCRIPTION = "Phishing Tool for 18 social media"

157
    INSTALL_COMMANDS = ["git clone https://github.com/An0nUD4Y/shellphish.git"]

158
    RUN_COMMANDS = ["cd shellphish && sudo bash shellphish.sh"]

159
    PROJECT_URL = "https://github.com/An0nUD4Y/shellphish"

160


161


162
class Thanos(HackingTool):

163
    TITLE = "Thanos"

164
    SUPPORTED_OS = ["linux"]

165
    DESCRIPTION = "Browser to Browser Phishing toolkit"

166
    INSTALL_COMMANDS = [

167
        "git clone https://github.com/TridevReddy/Thanos.git",

168
        # Vuln 2 fix: chmod -R 777 → chmod +x

169
        "cd Thanos && chmod +x Thanos.sh",

170
    ]

171
    RUN_COMMANDS = ["cd Thanos && sudo bash Thanos.sh"]

172
    PROJECT_URL = "https://github.com/TridevReddy/Thanos"

173


174


175
class QRLJacking(HackingTool):

176
    TITLE = "QRLJacking"

177
    DESCRIPTION = "QRLJacking — session hijacking attack vector targeting QR code based login"

178
    INSTALL_COMMANDS = [

179
        "git clone https://github.com/OWASP/QRLJacking.git",

180
        # Bug fix: geckodriver must be fetched as a binary, not cloned from source

181
        "GECKO_VER=$(curl -s https://api.github.com/repos/mozilla/geckodriver/releases/latest | grep tag_name | cut -d '\"' -f4) && "

182
        "wget -q https://github.com/mozilla/geckodriver/releases/download/$GECKO_VER/geckodriver-$GECKO_VER-linux64.tar.gz -O /tmp/geckodriver.tar.gz && "

183
        "tar -xzf /tmp/geckodriver.tar.gz -C /tmp && sudo mv /tmp/geckodriver /usr/local/bin/",

184
        "cd QRLJacking && pip3 install --user -r QRLJacker/requirements.txt",

185
    ]

186
    RUN_COMMANDS = ["cd QRLJacking/QRLJacker && python3 QrlJacker.py"]

187
    PROJECT_URL = "https://github.com/OWASP/QRLJacking"

188


189


190
class Maskphish(HackingTool):

191
    TITLE = "Maskphish"

192
    SUPPORTED_OS = ["linux"]

193
    DESCRIPTION = "Hide phishing URL under a normal looking URL (google.com or facebook.com)"

194
    INSTALL_COMMANDS = [

195
        "git clone https://github.com/jaykali/maskphish.git",

196
    ]

197
    RUN_COMMANDS = ["cd maskphish && sudo bash maskphish.sh"]

198
    PROJECT_URL = "https://github.com/jaykali/maskphish"

199


200


201
class BlackPhish(HackingTool):

202
    TITLE = "BlackPhish"

203
    SUPPORTED_OS = ["linux"]

204
    INSTALL_COMMANDS = [

205
        "git clone https://github.com/iinc0gnit0/BlackPhish.git",

206
        "cd BlackPhish && sudo bash install.sh",

207
    ]

208
    RUN_COMMANDS = ["cd BlackPhish && sudo python3 blackphish.py"]

209
    PROJECT_URL = "https://github.com/iinc0gnit0/BlackPhish"

210


211
    def __init__(self):

212
        # Bug fix: super() Python 3 style

213
        super().__init__([("Update", self.update)])

214


215
    def update(self):

216
        import subprocess

217
        from config import get_tools_dir

218
        subprocess.run(["bash", "update.sh"], cwd=str(get_tools_dir() / "BlackPhish"))

219


220


221
class Dnstwist(HackingTool):

222
    # Bug 2 fix: all attributes were wrong case (Title, Install_commands, etc.)

223
    # They are now the correct uppercase names the base class reads.

224
    TITLE = "dnstwist"

225
    DESCRIPTION = "Domain name permutation engine for detecting typosquatting, phishing and brand impersonation"

226
    INSTALL_COMMANDS = ["pip3 install --user dnstwist"]

227
    RUN_COMMANDS = ["dnstwist --help"]

228
    PROJECT_URL = "https://github.com/elceef/dnstwist"

229


230


231
class PhishingAttackTools(HackingToolsCollection):

232
    TITLE = "Phishing attack tools"

233
    TOOLS = [

234
        Autophisher(),

235
        Pyphisher(),

236
        AdvPhishing(),

237
        Setoolkit(),

238
        SocialFish(),

239
        HiddenEye(),

240
        Evilginx3(),

241
        ISeeYou(),

242
        SayCheese(),

243
        QRJacking(),

244
        BlackEye(),

245
        ShellPhish(),

246
        Thanos(),

247
        QRLJacking(),

248
        BlackPhish(),

249
        Maskphish(),

250
        Dnstwist(),

251
    ]

252


253


254
if __name__ == "__main__":

255
    tools = PhishingAttackTools()

256
    tools.show_options()

257


258