rafin103

old db but still will have a look xD

How to use Evilginx2 Complete guide . [hide] Guys i am not the developer, but i use it with success, For any questions/request please contact me. evilginx2 is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows to bypass 2-factor authentication protection. This tool is a successor to Evilginx, released in 2017, which used a custom version of nginx HTTP server to provide man-in-the-middle functionality to act as a proxy between a browser and phished website. Present version is fully written in GO as a standalone application, which implements its own HTTP and DNS server, making it extremely easy to set up and use. Disclaimer I am very much aware that Evilginx can be used for nefarious purposes. This work is merely a demonstration of what adept attackers can do. It is the defender's responsibility to take such attacks into consideration and find ways to protect their users against this type of phishing attacks. Evilginx should be used only in legitimate penetration testing assignments with written permission from to-be-phished parties. Installation You can either use a precompiled binary package for your architecture or you can compile evilginx2 from source. You will need an external server where you'll host your evilginx2 installation. I personally recommend Digital Ocean and if you follow my referral link, you will get an extra $10 to spend on servers for free. Evilginx runs very well on the most basic Debian 8 VPS. Installing from source In order to compile from source, make sure you have installed GO of version at least 1.10.0 (get it from here) and that $GOPATH environment variable is set up properly (def. $HOME/go). After installation, add this to your ~/.profile, assuming that you installed GO in /usr/local/go: export GOPATH=$HOME/go export PATH=$PATH:/usr/local/go/bin:$GOPATH/bin Then load it with source ~/.profiles. Now you should be ready to install evilginx2. Follow these instructions: sudo apt-get install git make go get -u github.com/kgretzky/evilginx2 cd $GOPATH/src/github.com/kgretzky/evilginx2 make You can now either run evilginx2 from local directory like: sudo ./bin/evilginx -p ./phishlets/ or install it globally: sudo make install sudo evilginx Instructions above can also be used to update evilginx2 to the latest version. Installing with Docker You can launch evilginx2 from within Docker. First build the container: docker build . -t evilginx2 Then you can run the container: docker run -it -p 53:53/udp -p 80:80 -p 443:443 evilginx2 Phishlets are loaded within the container at /app/phishlets, which can be mounted as a volume for configuration. Installing from precompiled binary packages Grab the package you want from here and drop it on your box. Then do: unzip .zip -d cd If you want to do a system-wide install, use the install script with root privileges: chmod 700 ./install.sh sudo ./install.sh sudo evilginx or just launch evilginx2 from the current directory (you will also need root privileges): chmod 700 ./evilginx sudo ./evilginx Usage IMPORTANT! Make sure that there is no service listening on ports TCP 443, TCP 80 and UDP 53. You may need to shutdown apache or nginx and any service used for resolving DNS that may be running. evilginx2 will tell you on launch if it fails to open a listening socket on any of these ports. By default, evilginx2 will look for phishlets in ./phishlets/ directory and later in /usr/share/evilginx/phishlets/. If you want to specify a custom path to load phishlets from, use the -p parameter when launching the tool. Usage of ./evilginx: -debug Enable debug output -developer Enable developer mode (generates self-signed certificates for all hostnames) -p string Phishlets directory path You should see evilginx2 logo with a prompt to enter commands. Type help or help if you want to see available commands or more detailed information on them. Getting started To get up and running, you need to first do some setting up. At this point I assume, you've already registered a domain (let's call it yourdomain.com) and you set up the nameservers (both ns1 and ns2) in your domain provider's admin panel to point to your server's IP (e.g. 10.0.0.1): ns1.yourdomain.com = 10.0.0.1 ns2.yourdomain.com = 10.0.0.1 Set up your server's domain and IP using following commands: config domain yourdomain.com config ip 10.0.0.1 Now you can set up the phishlet you want to use. For the sake of this short guide, we will use a LinkedIn phishlet. Set up the hostname for the phishlet (it must contain your domain obviously): phishlets hostname linkedin my.phishing.hostname.yourdomain.com And now you can enable the phishlet, which will initiate automatic retrieval of LetsEncrypt SSL/TLS certificates if none are locally found for the hostname you picked: phishlets enable linkedin Your phishing site is now live. Think of the URL, you want the victim to be redirected to on successful login and get the phishing URL like this (victim will be redirected to https://www.google.com): phishlets get-url linkedin https://www.google.com Running phishlets will only respond to tokenized links, so any scanners who scan your main domain will be redirected to URL specified as redirect_url under config. If you want to hide your phishlet and make it not respond even to valid tokenized phishing URLs, use phishlet hide/unhide command. You can monitor captured credentials and session cookies with: sessions To get detailed information about the captured session, with the session cookie itself (it will be printed in JSON format at the bottom), select its session ID: sessions The captured session cookie can be copied and imported into Chrome browser, using EditThisCookie extension. Important! If you want evilginx2 to continue running after you log out from your server, you should run it inside a screen session. [/hide]

NameCheap web hosting for 1$ per year. [hide] https://www.namecheap.com/promos/website-builders-bloggers-promo/?utm_expid=.gYJ0IKnSRhOOGf1OSN3KMA.1&utm_referrer=https%3A%2F%2Fwww.nulled.to%2Ftopic%2F717559-namecheap-hosting-offer-1-for-1-year%2F [/hide] :fiesta: :fiesta: :fiesta: :fiesta: :fiesta:

finally you released it .. thank you soo much Heart

let see :fiesta: :fiesta: :fiesta: :fiesta:

UPDATED Please do check again :fiesta: :fiesta: :fiesta: :fiesta:

dammm son nice one :kek: :kek:

Leechers will be reported 1By1 till death Love this one if work will do for sure <3

Please Please use it on Vm or Sandbox or RDP Hit like if you enjoyed. [hide] https://anonfiles.com/6cYeP9s6b4/SpyNote_6.4_Cracked_rar [/hide] :fiesta: :fiesta: :fiesta: :fiesta: :smart: :smart: :smart: :smart:

[hide] So mate the method is about starting a sport betting shop This is an example of how a sport betting store looks like The best thing about this method is that you will offer a service which you will be able to create without any experience or skills at all. You will simply have to pick a winner between 2 teams and you will do that based on your intoition (can be really easy when you take on mind you may know some of the big teams or players - as you may give tennis, ufc, even chess predictions). You will get the odds for the games (and you can make a decision based on that at some at the bigger betting sites like bet365.com Wiilliam Hill etc) But if you got 0 experience with sports it's still not a problem. You will be able to get the tips for free This is the best site for free sport betting tips, you should sell these tips daily to your customers https://www.freesupertips.co.uk/ Where you should sell your sport betting tips? -Forums are really good place to sell those picks, here is a list of a good forums where you can sell your tips hackforums.net sythe.org mpgh.net www.nulled.to elitepvpers.com bitcointalk.org ogusers.com Spend some money on upgrades to make your account look better and buy some GFX, this will boost your sales a lot You should also sell your tips in Facebook. Simply create a Facebook page and promote your services there You can always offer discounts to new customers so you earn reviews fast Another good thing to do is join local betting groups and advertise your page there Instagram is a great place for offering your tips since a lot of people are using it, buy some followers to your page and start advertising there There is a trick on how you will make guaranteed profits but it is greyhat one What you can do is post that you have a manipulated game For example pick a soccer game When 2 people contact you, you tell one of them that the game will be under 2.5 and to the other one that the game will be over 2.5 Doing this will bring you atleast 1 winner that will buy your next fixed game Fixed games can be easily sold at 100-200$ each The good thing about this method is that you sell something which you get for free. Betting is money based so there is a big demand for it People are interested in making money easy and this is one of the easiest way to make money so you will have customers guaranteed If you need any help regarding this method please let me know. I will be more happy to help you, got huge experience in this by [/hide]

[hide] 1. buy hosting and domain 2. create a landing page in Mobirise4 3. the button on the landing page must redirect to your CPA link 4. boom profit (fb won't see the redirect then, hence they won't block your site) [/hide] :fiesta: :fiesta: :fiesta:

cool cool ? looks cool

LimeUSB This is just a basic example and you can modify it in so many ways. For a better understanding check the youtube video below. [hide] https://www.youtube.com/watch?v=ZRdYINVR1es [/hide] [hide] https://github.com/NYAN-x-CAT/LimeUSB [/hide] :fiesta: :fiesta: :fiesta: :smart: :smart: :smart: :ezy: :ezy: :ezy: :pogchamp: :pogchamp: :pogchamp: :??:

:fiesta: :fiesta: :fiesta: [hide] https://mega.nz/#F!OlVlhSSK!NlFaPYAxqxh_FSjZ4wAwQw [/hide] :smart: :smart: :smart:

Hope it works