Muhammad Daffa Blog

Disclaimer: My post is for academic purposes only, How to use this information is the visitor’s responsibility.

This week, I have learned about social engineering. The tools that I’m going to explain is gophish that specialize on phising.

Gophish is an open-source phishing toolkit meant to help pentesters and businesses conduct real-world phishing simulations.

In Gophish dashboard, There are 5 tabs that are needed to be filled in order to be use gophish which is Sending Profile, Landing Page, Email Template, Users and Groups, and the last is Campaign tab.

•Sending Profile: Data that is used to be the sender of the phishing email

•Landing Page: Login page that will be used to extract data from victim •Email Template: The email that will be sent to the victim

•Users and Groups: List of the victim email address

•Campaign: Tab to initialize the email phishing simulation.

I personally like gophish because of the tool ability to have multiple phishing attempts at the same time as well as a very easy tool to learn and making customized page is very easy here.