PhishSend is a penetration testing and red teaming tool that automates the process of sending phishing emails and tracking unique links that are clicked. These scripts were tested with Python 2.7
Installation
Clone the GitHub repository
git clone https://github.com/centralinfosec/Send-and-Track-Phishing-Campaigns /opt/Central-InfoSec/Send-and-Track-Phishing-CampaignsUsage
- Update the “config.ini” configuration file
- Add email addresses to the “emailAddresses.txt” file
- Add an HTML message to the “messageHtml.txt” file. (Leave the placeholders “phishing_domain” and “tracking_id” as the script will replace the phishing domain with the value from the “config.ini” configuration file and unique IDs are created based off the email addresses.)
- (Optional) Add a plain text message to the “messagePlain.txt” file
- Start the phishing campaign with the following command:
python /opt/Central-InfoSec/Send-and-Track-Phishing-Campaigns/sendPhishingEmails.pyViewing Phishing Logs
Check for phishing clicks with the following command:
python /opt/Central-InfoSec/Send-and-Track-Phishing-Campaigns/getPhishingLogs.pyExample Screenshots
Campaign Details from “sendPhishingEmails.py”
Email Details from “sendPhishingEmails.py”
Click Details from “getPhishingLogs.py”
