Viewing 1 post (of 1 total)
  • Author
    Posts
  • #208508
    maleek zain
    Participant

    Hello Mr, How are you sir?

    I’m working around evilginx-framework and I have questions that I haven’t been able to get answer to.

    How do i prevent phishlet collusion?
    I have 2 phishlets that share the same content but have different landing page:
    yaml-1
    login:
    domain: 365
    path: /landing1/
    yaml-2
    login:
    domain: 365
    path: /landing2/
    After loading these phishlets, somehow one of it managed to work while the other didn’t so I asked, why? After some taught I said what if homoglyph is used?
    so I added one to my DNS but still result to Host error

    The problem I think I have here is maybe because I’m doing it on single FQDN, so I need some help how to beat around this or it’s entirely impossible to achieve this using one domain.

Viewing 1 post (of 1 total)
  • You must be logged in to reply to this topic.
Privacy Overview
ZSecurity logo featuring a stylized red letter Z

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.

Strictly Necessary Cookies

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

3rd Party Cookies

This website uses Google Analytics and Linkedin to collect anonymous information such as the number of visitors to the site, and the most popular pages.

Keeping these cookies enabled helps us to improve our website.