Comments (5)
kgretzky
commented on August 27, 2024
Hey!
You mean to generate links without the parameter that holds the redirection URL or you want the value of the redirection parameter to be in clear text without base64 encoding?
from evilginx2.
keep-learning-go
commented on August 27, 2024
Yes, without the parameter that holds the redirection URL at all.
Is there any way to make it "optional" ?
Redirection is not needed in my case.
Thank you.
from evilginx2.
kgretzky
commented on August 27, 2024
Yes, you can pass an empty redirection URL using empty quotes "":
phishlets get-url <phishlet> ""
from evilginx2.
keep-learning-go
commented on August 27, 2024
Alright, close but, still not exactly what I'm trying to achieve.
Extension now got shorter ( "" = &xt=fe98 )
What I'm trying achieve is to disable "unauthorized request", so that my link can be:
www.my-phishlet-link.com/login (without any kind of b64 extension or whatsover).
from evilginx2.
keep-learning-go
commented on August 27, 2024
I found a "workaround" for this. I replaced hardcoded Rick YouTube url to my "gateway" url. So anytime there is unauthorized visit to www.my-phishlet-link.com/login it will redirected to www.my-phishlet-link.com/login&xt=fe98.
Thank you Kuba for such amazing tool once again!
Also, I wanted you to have a look at this nice tool:
https://github.com/boxug/trape
maybe in the future you or some Gitters here, will merge these 2 projects. It has nice control panel elements. Good luck.
from evilginx2.
Related Issues (20)
- Cant reach domain HOT 1
- failed to set up TLS certificates HOT 11
- Office login constantly detected on chrome HOT 1
- How to Configure Evilginx to Accept All Requests Without Redirecting Unauthorized Ones? HOT 2
- Error for Site Owner: Invalid Domain for Site Key
- Regexp separated by ':' or by ',' ??
- Roblox HOT 1
- Not capturing username or password or cookies HOT 2
- [+++] [0] detected authorization URL - tokens intercepted: /mail/0/sw.js HOT 3
- Gmail phishlet not redirect authorize url HOT 9
- Phishlet auto signing in targets and not capturing anything HOT 2
- The request body must contain the following parameter: 'client_id'.
- The Browser or App may not be secured . I got this error in google phishlet, i think google again updated their policy ,any updates related to this issue? HOT 3
- Save Sessions with correct Username and Password Even Without 2FA Approval
- index out of range crash
- Google phishlets work perfectly fine. HOT 3
- config.json file empty after reboot
- Multi-Value Token Response JSON HOT 1
- Cant get tls certificate??
- JS Graphic problem request
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from evilginx2.