SPF (SpeedPhish Framework) is a an e-mail phishing toolkit written in Python designed to allow for quick recon and deployment of simple social engineering phishing exercises. There are also other popular Phishing tools are frameworks such as: – Phishing Frenzy – E-mail Phishing Framework – Gophish – Open-Source Phishing Framework – sptoolkit Rebirth – Simple […]
Tags: email-phishing, Phishing, phishing framework, phishing tool, phishing toolkit, Python, speedphish, speedphish framework, spf
Posted in: Hacking Tools, Phishing, Social Engineering | Add a CommentPhishing Frenzy is an Open Source Ruby on Rails e-mail phishing framework designed to help penetration testers manage multiple, complex phishing campaigns. The goal of the project is to streamline the phishing process while still providing clients the best realistic phishing campaign possible. This goal is obtainable through campaign management, template reuse, statistical generation, and […]
Gophish is a phishing framework that makes the simulation of real-world phishing attacks very straight forwards. The idea behind gophish is simple – make industry-grade phishing training available to everyone. There are various other similar tools available such as Simple Phishing Toolkit and sptoolkit Rebirth. I wonder if this is the beginning of an emergence […]
Tags: go, golang, gophish, Phishing, phishing education, phishing framework, phishing tool, prevent phishing, protect against phishing
Posted in: Countermeasures, Phishing | Add a CommentSo another hack has been exposed, this time on ICANN – which is pretty bad. They are the database of the Internet basically, including the root zone system which is the highest authority for DNS requests. “The Internet Corporation for Assigned Names and Numbers (ICANN) is a non-profit organization that is responsible for the coordination […]
Tags: centralised zone data system, core zone dns, czds, czds hacked, czds security, icann, icann hacked, icann security, Phishing, spear phishing
Posted in: Network Hacking, Phishing | Add a CommentIt’s been a while, but hey I’m back! So here’s a news story that caught my eye today – it’s been a while since we’ve reported on a Spear Phishing attack, and guess what? Yes, last time it was also perpetrated by Chinese, but it was targeting Google’s Gmail. Targeted Phishing Attacks Carried Out On […]
Tags: chinese-hackers, cyber warfare, cyber-terrorism, cyberterrorism, hacking the white house, hacking us military network, hacking white house, Phishing, spear phishing, us military network security, USA, white house, white house military office, white house security, white house spear phishing, whmo
Posted in: General Hacking, Legal Issues, Phishing | Add a Commentspt is a simple concept with powerful possibilities. It is what it’s name implies: a simple phishing toolkit. The basic idea the spt project had was “Wouldn’t it be cool if there were a simple, effective, easy to use and free (most importantly!) tool that information security professionals could use to evaluate and train what […]
Oh look – another vulnerability in Facebook! It wasn’t long ago we reported New Research Shows Facebook’s URL Scanner Is Vulnerable To Cloaking. Well this time the private messaging function has been compromised, you can attach an executable and send it to anyone as long as you put a space after the filename. It’s not […]
Tags: attachment parsing, facebook, facebook hacking, facebook malware, facebook security, facebook virus, file attachment, file parsing, hacking-facebook, malware, malware attachment, malware parsing, nathan power, Phishing, Social Engineering
Posted in: Exploits/Vulnerabilities, Malware, Web Hacking | Add a CommentIt was just about a week ago when we wrote about the technical flaw in Hotmail and the fact that the Hotmail Exploit Has Been Silently Stealing E-mail for some time. The latest news is some hackers have been targeting users of the Gmail service, specifically US government officials. This comes shortly after the news […]
Tags: china, chinese political activists, chinese-hackers, cyber-terrorism, cyberterrorism, gmail phishing, hacking-US-government, Phishing, phising gmail, Privacy, secrecy, spear phishing, targeted phishing, us government officials, us military security, us-military
Posted in: Phishing | Add a CommentIt seems like the Chinese are always coming up with inventive ways to scam people, this time the people in their own country. Android is of course growing quickly globally and China is no exception with the availability of cheap hardware there the open-source Android OS is a natural choice. The latest scam is some […]
Tags: android, android china, android malware, android phone trojan, android phones, android trojan, android virus, china malware, hacking android, Legal Issues, malware, Phishing, Privacy, scamming, spammers, trojan, trojans
Posted in: Legal Issues, Malware, Privacy | Add a CommentThis is an interesting new attack, I saw a live demo of it a while back here: Tabnabbing: A New Type of Phishing Attack. All you need to do is let the page load, then browse to another tab for 5 seconds or more and you’ll see the favicon change to Gmail and the page […]
