Evilginx – MITM Attack Framework For Phishing Credentials & Session Cookies

Evilginx2 – MITM Attack Framework For Phishing Credentials & Session Cookies

What Is Evilginx2 :

evilginx2 is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection.

This tool is a successor to Evilginx, released in 2017, which used a custom version of nginx HTTP server to provide man-in-the-middle functionality to act as a proxy between a browser and phished website. Present version is fully written in GO as a standalone application, which implements its own HTTP and DNS server, making it extremely easy to set up and use.

Features:

•  Enable or disable site configurations for use with Nginx server, using supplied Evilginx templates from sites directory.
• Parse Nginx logs to extract intercepted login credentials and session cookies. Logs, by default, are saved in logs directory, where evilginx.py script resides. This can be done automatically after you enable auto-parsing in the Setup phase.
• Generate phishing URLs that you can use in your Red Team Assessments.

Screen shots:

Download:

(Ads Free) github : LINK

(short link*) github: LINK

*using short links really help me keep sharing content but also i don't want you feel angry at me so there's a Ads free link