/phishpond

Because phishtank was taken.. explore phishing kits in a contained environment!

Primary LanguagePHPBSD 3-Clause Clear LicenseBSD-3-Clause-Clear

What is phishpond?

It's a pre-built docker environment which allows you to quickly, easily and safely spin up phishing kits for analysis. Out of the box you can browse, "mitm" web traffic, log mail calls to flat files and debug PHP code remotely.

How to use

  1. git clone https://github.com/zerofox-oss/phishpond.git
  2. cd ./phishpond/
  3. Configure any db connection strings within docker-compose.yml
  4. docker-compose up -d
  5. Browse to http://localhost:5800 for the virtual browser
  6. Browse to http://localhost:8080 for mitmproxy
  7. Within the virtual browser navigate to http://phishpond.local

(First time setup)

  1. Open preferences within the virtual browser
  2. Search cert
  3. Click view certificates
  4. Click the authorities tab
  5. Click Import
  6. Import /config/certs/mitmproxy-ca-cert.pem
  7. Tick Trust this CA to identify websites
  8. OK

You will need to repeat these steps every time you remove the browser-volume