0003703: New tool phishery - An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector

ID	Project	Category	View Status	Date Submitted	Last Update

0003703	Kali Linux	Queued Tool Addition	public	2016-10-31 19:03	2021-05-18 11:02

Reporter	g0tmi1k	Assigned To	sbrun
Priority	normal	Severity	minor	Reproducibility	have not tried
Status	resolved	Resolution	fixed
Fixed in Version	2017.2

Summary	0003703: New tool phishery - An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector
Description	Name: phishery Version: 1.0.2 (https://github.com/ryhanson/phishery/releases) Homepage: https://github.com/ryhanson/phishery Download: https://github.com/ryhanson/phishery/archive/v1.0.2.tar.gz License: MIT (https://github.com/ryhanson/phishery/blob/master/LICENSE) Description An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector Phishery is a Simple SSL Enabled HTTP server with the primary purpose of phishing credentials via Basic Authentication. Phishery also provides the ability easily to inject the URL into a .docx Word document. The power of phishery is best demonstrated by setting a Word document's template to a phishery URL. This causes Microsoft Word to make a request to the URL, resulting in an Authentication Dialog being shown to the end-user. The ability to inject any .docx file with a URL is possible using phishery's -i [in docx], -o [out docx], and -u [url] options. :

Date Modified	Username	Field	Change
2016-10-31 19:03	g0tmi1k	New Issue
2017-05-09 16:20	sbrun	Assigned To	=> sbrun
2017-05-09 16:20	sbrun	Status	new => assigned
2017-05-16 12:52	sbrun	Status	assigned => resolved
2017-05-16 12:52	sbrun	Resolution	open => fixed
2017-05-16 12:52	sbrun	Note Added: 0006696
2017-06-13 08:45	g0tmi1k	Fixed in Version	=> 2017.2
2021-05-18 11:02	g0tmi1k	Category	New Tool Requests => Queued Tool Addition

sbrun 2017-05-16 12:52 manager ~0006696	phishery version 1.0.2-0kali1 is in kali-rolling