GitHub - ryhanson/phishery: An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Tool - T1588.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 761396cd-1798-4e15-a56f-2406fd3f5a6b |
| Fingerprint | bcde7b9fdb1360c2 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 16, 2016, midnight |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Nov. 18, 2024, 8:27 a.m. |
| Headline | ryhanson/phishery |
| Title | GitHub - ryhanson/phishery: An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector |
| Detected Hints/Tags/Attributes | 19/2/12 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://github.com/ryhanson/phishery |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | secure.site |
|
| Details | File | 131 | tar.gz |
|
| Details | File | 17 | settings.json |
|
| Details | File | 7 | credentials.json |
|
| Details | File | 1 | good.docx |
|
| Details | File | 1 | bad.docx |
|
| Details | File | 12 | server.crt |
|
| Details | File | 18 | server.key |
|
| Details | File | 2 | template.dotx |
|
| Details | IPv4 | 619 | 0.0.0.0 |
|
| Details | IPv4 | 1442 | 127.0.0.1 |
|
| Details | Url | 1 | https://secure.site.local/docs |