SPF (SpeedPhish Framework) is a an e-mail phishing toolkit written in Python designed to allow for quick recon and deployment of simple social engineering phishing exercises.
There are also other popular Phishing tools are frameworks such as:
– Phishing Frenzy – E-mail Phishing Framework
– Gophish – Open-Source Phishing Framework
– sptoolkit Rebirth – Simple Phishing Toolkit
Usage
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 |
usage: spf.py [-h] [-f <list.txt>] [-C <config.txt>] [--all] [--test] [-e] [-g] [-s] [--simulate] [-w] [-W] [-d <domain>] [-c <company's name>] [--ip <IP address>] [-v] [-y] optional arguments: -h, --help show this help message and exit -d <domain> domain name to phish -c <company's name> name of company to phish --ip <IP address> IP of webserver defaults to [192.168.1.124] -v, --verbosity increase output verbosity input files: -f <list.txt> file containing list of email addresses -C <config.txt> config file enable flags: --all enable ALL flags... same as (-e -g -s -w) --test enable all flags EXCEPT sending of emails... same as (-e -g --simulate -w -y -v -v) -e enable external tool utilization -g enable automated gathering of email targets -s enable automated sending of phishing emails to targets --simulate simulate the sending of phishing emails to targets -w enable generation of phishing web sites -W leave web server running after termination of spf.py misc: -y automatically answer yes to all questions |
Requirements
- dnspython
- twisted
- PhantomJS
You can download SPF here:
Or read more here.