Phishing attack is the most popular method to hack someone account, how facebook, twitter, instagram or any accounts gets hacked, there some method to take over an account one of them is phishing. This is simple and easy method but is working very good, many of people still don’t understand how phishing is work. Attacker is simply create a fake login page and send the link to target email or private message and if target click on the link then the fake login page will open and if target try to log in and put username/email and password that credential is send to attacker.
Gophish is an open-source phishing toolkit designed for businesses and penetration testers. It provides the ability to quickly and easily setup and execute phishing engagements and security awareness training. You can perform phishing attack in any social media or log in pages, because this tool is automatically clone the login page.
Installation of Gophish is dead-simple – just download and extract the zip containing the release for your system, and run the binary. Gophish has binary releases for Windows, Mac, and Linux platforms. You can also see the full installation guide here.
If you are building from source, please note that Gophish requires Go v1.9 or above!
To build Gophish from source, simply run
go get github.com/gophish/gophish and
cd into the project source directory. Then, run
go build. After this, you should have a binary called
gophish in the current directory.
You can also use Gophish via an unofficial Docker container here.
After running the Gophish binary, open an Internet browser to https://localhost:3333 and login with the default username (admin) and password (gophish).
Documentation can be found on our site. Find something missing? Let us know by filing an issue!
Find a bug? Want more features? Find something missing in the documentation? Let us know! Please don’t hesitate to file an issue and we’ll get right on it.