Let’s spread Phishing and escape the blocklists

Demonstration project for the HackInBo Safe Edition event, carried out to raise funds for Covid-19.

Let's create a phishing campaign together to steal credentials or spread malicious files.

We will take advantage of several useful techniques to escape Safe Browsing blocklists or the filtering rules of spam filters.

Requirements

• WebServer Apache o NGINX
• PHP 7.x
• IDE

Configuration

The function.php file allows you to enable or disable evasion techniques.

Talk

The event will be visible on YouTube Live Streaming, more details on my blog.

Bibliography

• Evasion Techniques: User-Agent Blocking by PhishLabs
• Evasion Techniques: Geoblocking by IP
• On the (In)security of Google Safe Browsing

License

GNU General Public License v3.0

Disclaimer

This phishing kit is written for educational purpose only, please use it on your own good faith.