https://github.com/andpalmier/phishflood

Pollute phishing kits with fake credentials
https://github.com/andpalmier/phishflood

fake-data fake-data-generator phishing phishing-kit

Last synced: 6 months ago
JSON representation

Pollute phishing kits with fake credentials

• Host: GitHub
• URL: https://github.com/andpalmier/phishflood
• Owner: andpalmier
• License: other
• Created: 2021-01-31T11:05:28.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2021-12-17T15:49:48.000Z (almost 4 years ago)
• Last Synced: 2025-03-24T22:41:37.526Z (7 months ago)
• Topics: fake-data, fake-data-generator, phishing, phishing-kit
• Language: Go
• Homepage:
• Size: 43 KB
• Stars: 11
• Watchers: 1
• Forks: 6
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# phishflood



  

  


    

    

    

  


This is a proof of concept to pollute phishing kits with fake data. An old version of this project was discussed [in this blog post](https://andpalmier.github.io/posts/flooding-phishing-kits/), I decided to use this repository to add some features.

**PLEASE NOTE: At the moment,** `phishflood` **is compatible only with the phishing kits mentioned in the blog post, and with some others which follows the same structure. This is due to a naif approach for the data generation (it's a PoC 😅).**

## Usage

After downloading the repository, build the project:

```

$ make phishflood

```

This will create a folder `build` and an executable `phishflood`. You can then run the executable with the following flags:

- `-dmax (int)`: maximum delay between consecutive requests, in seconds (default 3600).

- `-dmin (int)`: minimun delay between consecutive requests, in seconds (default 10).

- `-goroutines (int)`: number of goRoutines (default 10).

- `-proxies (string)`: one or multiple proxies; specify the schema (http default) and port, and use ',' as a separator.

- `-seed (int64)`: seed used for random data generation, random if not specified.

- `-url (string)`: domain name or url, if schema is not specified, https is assumed.

- `-ua (string)`: User Agent to be used, using Chrome on iPhone by default.

### Todo

- [x] Improve code organization

- [x] Add custom User Agent flag

- [x] Remove colly dependency

- [x] Started [gofakeit](https://github.com/brianvoe/gofakeit) integration for fake data generation

- [ ] Add compatibility with known phishing kits