evilginx2 icon indicating copy to clipboard operation
evilginx2 copied to clipboard

Published 20 hours ago verified publisher icon kgretzky

How to fix red page

Open henzo5050 opened this issue 3 years ago • 10 comments

Please I would love anyone to share idea on how to fix evilginx2 Built Link going Red and unable to access it.

Thanks

henzo5050 avatar Nov 04 '21 15:11 henzo5050

can you share a picture?

rnnhood avatar Nov 08 '21 02:11 rnnhood

i keep getting the deceptive site ahead warning from browsers, and even when i click ignore, the cookie values won't parse. Why is that ?, i'm guessing is a similar problem @henzo5050 is facing

kinkk avatar Nov 08 '21 07:11 kinkk

sure i can share a picture red page

henzo5050 avatar Nov 08 '21 09:11 henzo5050

please anyone with better solution for this? i have tried using killbot but that did not do much good

henzo5050 avatar Nov 08 '21 09:11 henzo5050

i fixed mine on the digitalocean droplet, go to settings>security> then select free letsencrypt certificate. worked for me

kinkk avatar Nov 08 '21 11:11 kinkk

The domain is blacklisted on Google Safe Browsing

MelroyB avatar Nov 09 '21 16:11 MelroyB

The domain is blacklisted on Google Safe Browsing

yes but how do i prevent this from frequently occurring

henzo5050 avatar Nov 09 '21 16:11 henzo5050

If the certificates are requested on Letsencrypt. The first hour there are a bunch of web scanners visiting. So set blacklist on ALL or UNAUTH and the phishlet on hide.

Never set the lure path to / The scanners will detect the phishing site and reporting it as unsafe.

So if you set the blacklist on, and request a couple of certificates the blacklist will fill with most scanners (run evilginx in --debug mode to see this)

If you mail the link set the phishlet on hide to prevent mail scanners to detect the phshing site for a couple of minutes

MelroyB avatar Nov 10 '21 09:11 MelroyB

If the certificates are requested on Letsencrypt. The first hour there are a bunch of web scanners visiting. So set blacklist on ALL or UNAUTH and the phishlet on hide.

Never set the lure path to / The scanners will detect the phishing site and reporting it as unsafe.

So if you set the blacklist on, and request a couple of certificates the blacklist will fill with most scanners (run evilginx in --debug mode to see this)

If you mail the link set the phishlet on hide to prevent mail scanners to detect the phshing site for a couple of minutes

please can you share the command or step to do this

henzo5050 avatar Nov 10 '21 16:11 henzo5050

If the certificates are requested on Letsencrypt. The first hour there are a bunch of web scanners visiting. So set blacklist on ALL or UNAUTH and the phishlet on hide.

Never set the lure path to / The scanners will detect the phishing site and reporting it as unsafe.

So if you set the blacklist on, and request a couple of certificates the blacklist will fill with most scanners (run evilginx in --debug mode to see this)

If you mail the link set the phishlet on hide to prevent mail scanners to detect the phshing site for a couple of minutes

Never set the lure path to / The scanners will detect the phishing site and reporting it as unsafe. can you explain more on this

henzo5050 avatar Nov 10 '21 16:11 henzo5050