# GoPhish

{% embed url="<https://github.com/gophish/gophish>" %}

{% embed url="<https://getgophish.com/documentation/>" %}

[GoPhish](https://getgophish.com/) is an open-source phishing toolkit that allows users to quickly and easily set up and execute phishing engagements. The GitHub page above provides installation instructions, and I'll briefly cover setting up a phishing campaign.

## Setup

{% tabs %}
{% tab title="Users & Groups" %}

## Users & Groups

Users & Groups is where you create the group of email addresses you want to send phishing emails to. Users can be added individually or bulk-imported from a CSV file.

The template for the CSV file can be found after clicking *New Group*.
{% endtab %}

{% tab title="Email Templates" %}

## Email Templates

Email Templates is where you create the phishing email that the target will see using HTML. Here is an example when creating a new template:

<figure><img src="https://3234535347-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FkU93ONAZiHsNgO6Mhocr%2Fuploads%2FtZyg6kTfUmcEUj8axeUU%2F2023-08-05%2014_32_59-Email%20Templates%20-%20Gophish%20%E2%80%94%20Mozilla%20Firefox.jpg?alt=media&#x26;token=3ffac7f8-5068-41b5-a29e-8efcb5eb5cf8" alt="" width="519"><figcaption><p>Basic Email Template</p></figcaption></figure>

Notice in the HTML that the *here* is wrapped in an *a* tag that has *href* pointing to *{{.URL}}*. This tag tells GoPhish that the hyperlink here should point towards a spoofed login portal where we will capture credentials, the landing page.

Here is a quick list of tags that may be helpful:

|       Tag      | Description                          |
| :------------: | ------------------------------------ |
| {{.FIrstName}} | First name of the phishing target    |
|  {{.LastName}} | Last name of the phishing target     |
|  {{.Position}} | Work position of the phishing target |
|   {{.Email}}   | The target's email                   |
|    {{.URL}}    | The URL to the landing page          |

{% endtab %}

{% tab title="Landing Pages" %}

## Landing Pages

Landing Pages is where you create the page that the target user will see once they click on the link typically provided in the email template created above.

GoPhish has an *Import Site* feature that allows you to copy a legitimate webpage, or you can also create your own custom landing page using HTML.

{% hint style="info" %}
Sometimes, the *Import Site* feature doesn't correctly clone a webpage, but I've had luck using the *Save Page WE* extension in Firefox, so give that a shot!
{% endhint %}
{% endtab %}

{% tab title="Sending Profiles" %}

## Sending Profiles

Sending Profiles is where you set up who your phishing email will be coming from by creating a profile with SMTP relay details. The SMTP server you use can be anything from Microsoft Outlook's SMTP server to a provider such as Mailgun to a custom local SMTP server you are hosting.
{% endtab %}
{% endtabs %}

## Launching a Campaign

The Campaign tab is where you combine everything you created from above and launch the phishing campaign. The *New Campaign* menu is pretty straightforward, so the only thing I'll mention is the *URL* field. The URL in that field will be where your landing page will be hosted, so ensure your phishing targets can reach the URL.

If you want to use a custom domain to host the landing page, create a DNS A record for your domain that points to your GoPhish server.

Here's an example URL:

<figure><img src="https://3234535347-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FkU93ONAZiHsNgO6Mhocr%2Fuploads%2FVoXHaEWUTUJ4XvVfEOfQ%2F2023-08-05%2018_31_26-Campaigns%20-%20Gophish%20%E2%80%94%20Mozilla%20Firefox.jpg?alt=media&#x26;token=b6c8c9f5-9b7b-4778-93e1-c821e3b82221" alt="" width="563"><figcaption></figcaption></figure>