title
Penetration Testing: Gophish Tutorial (Phishing Framework)

description
Gophish is a powerful, open-source phishing framework that makes it easy to test your organization's exposure to phishing. This is an important tool for penetration testers and ethical hackers. Learn to use Gophish in this tutorial. 🎥Course from Sagar Bansal. 🔗Sagar's YouTube channel: https://www.youtube.com/channel/UCdsl8fYtJM2Mw-HueDy2G4Q 🔗Sagar's website: https://sagarbansal.com/ -- Learn to code for free and get a developer job: https://www.freecodecamp.org Read hundreds of articles on programming: https://www.freecodecamp.org/news

detail
{'title': 'Penetration Testing: Gophish Tutorial (Phishing Framework)', 'heatmap': [{'end': 404.621, 'start': 342.229, 'weight': 0.737}, {'end': 4196.597, 'start': 4121.615, 'weight': 0.7}, {'end': 4410.954, 'start': 4350.378, 'weight': 1}], 'summary': 'This tutorial on gophish framework covers setting up vps, configuring server, ssl certificate, dns records, dashboard, email campaigns, phishing website, and troubleshooting, providing practical insights and addressing challenges for effective corporate phishing tests.', 'chapters': [{'end': 559.438, 'segs': [{'end': 91.503, 'src': 'embed', 'start': 43.498, 'weight': 1, 'content': [{'end': 54.083, 'text': 'but you can see it has almost 80 pages and it gives you a lot of glance on how you should perform a penetration test, a real life penetration test.', 'start': 43.498, 'duration': 10.585}, {'end': 60.506, 'text': 'so here you will see they have social engineering should be in this one.', 'start': 54.083, 'duration': 6.423}, {'end': 63.687, 'text': '5.3 social engineering.', 'start': 60.506, 'duration': 3.181}, {'end': 69.851, 'text': 'so when you go ahead and open the social engineering aspects, which is right here,', 'start': 63.687, 'duration': 6.164}, {'end': 76.994, 'text': 'you will understand that social engineering simply attempts to trick someone to reveal the information.', 'start': 69.851, 'duration': 7.143}, {'end': 77.875, 'text': "that's what it is.", 'start': 76.994, 'duration': 0.881}, {'end': 79.335, 'text': "okay, that's what it is.", 'start': 77.875, 'duration': 1.46}, {'end': 86.679, 'text': 'generally we are trying to get some of the information which comes in the active reconnaissance phase through social engineering.', 'start': 79.335, 'duration': 7.344}, {'end': 91.503, 'text': 'otherwise we are trying to gain access which comes in the gaining access phase.', 'start': 86.679, 'duration': 4.824}], 'summary': '80-page guide on performing a real-life penetration test, including social engineering and information gathering.', 'duration': 48.005, 'max_score': 43.498, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou043498.jpg'}, {'end': 230.994, 'src': 'embed', 'start': 201.609, 'weight': 0, 'content': [{'end': 204.69, 'text': "it's very, very practical, what you see in the real life, right.", 'start': 201.609, 'duration': 3.081}, {'end': 206.831, 'text': "so i hope you're very interested with this.", 'start': 204.69, 'duration': 2.141}, {'end': 210.312, 'text': "let's go ahead and cover this course on go fish and let's get started.", 'start': 206.831, 'duration': 3.481}, {'end': 213.619, 'text': 'we will grab the go fish framework,', 'start': 211.277, 'duration': 2.342}, {'end': 221.726, 'text': 'which will allow us to do phishing attacks really simply and will give us a lot of power as compared to other possible ways.', 'start': 213.619, 'duration': 8.107}, {'end': 230.994, 'text': 'so go fish is a really great framework written in the go language, so you can just go to, like you can directly go to getgofish.com,', 'start': 221.726, 'duration': 9.268}], 'summary': 'Learn practical phishing with go fish framework for powerful attacks.', 'duration': 29.385, 'max_score': 201.609, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0201609.jpg'}, {'end': 418.265, 'src': 'heatmap', 'start': 342.229, 'weight': 3, 'content': [{'end': 346.731, 'text': "Now here I have got the gofish framework and let's see what are the files in this.", 'start': 342.229, 'duration': 4.502}, {'end': 349.372, 'text': 'So here is the readme file if you want.', 'start': 347.472, 'duration': 1.9}, {'end': 350.873, 'text': 'Here is the configuration file.', 'start': 349.412, 'duration': 1.461}, {'end': 355.155, 'text': 'In configuration file if you just open it up you can set up the ports.', 'start': 351.293, 'duration': 3.862}, {'end': 357.356, 'text': 'So let me show you guys that thing.', 'start': 355.615, 'duration': 1.741}, {'end': 361.186, 'text': 'here are the go fish listening port.', 'start': 358.442, 'duration': 2.744}, {'end': 362.908, 'text': 'here it will listen.', 'start': 361.186, 'duration': 1.722}, {'end': 368.576, 'text': 'and here are the go fish panel, server panel, main server port.', 'start': 362.908, 'duration': 5.668}, {'end': 370.318, 'text': 'so if you want, you can change this board.', 'start': 368.576, 'duration': 1.742}, {'end': 373.122, 'text': '183333 if you want.', 'start': 370.318, 'duration': 2.804}, {'end': 375.725, 'text': "it's just all about on you.", 'start': 373.122, 'duration': 2.603}, {'end': 382.792, 'text': "that is how go fish is and to run go fish you just need to run this file here with the terminal and that's all.", 'start': 375.725, 'duration': 7.067}, {'end': 385.014, 'text': "so i'll see in the next lecture we will.", 'start': 382.792, 'duration': 2.222}, {'end': 387.176, 'text': 'we will just go ahead and explore go fish.', 'start': 385.014, 'duration': 2.162}, {'end': 391.841, 'text': "we will run this server and we'll see what you can do with the go fish and how it looks.", 'start': 387.176, 'duration': 4.665}, {'end': 393.082, 'text': 'so thank you so much for watching.', 'start': 391.841, 'duration': 1.241}, {'end': 395.758, 'text': 'welcome back everyone in this lecture.', 'start': 394.158, 'duration': 1.6}, {'end': 398.919, 'text': 'we will go ahead and start the go fish server.', 'start': 395.758, 'duration': 3.161}, {'end': 404.621, 'text': "so in last lecture we just downloaded this all folder and it's very simple to launch go fish.", 'start': 398.919, 'duration': 5.702}, {'end': 409.943, 'text': "you just open it in a terminal and it's just the running the go fish script here.", 'start': 404.621, 'duration': 5.322}, {'end': 416.325, 'text': "so it's the full stop and then a power slash go fish and just press enter.", 'start': 409.943, 'duration': 6.382}, {'end': 418.265, 'text': "it'll start the go fish server.", 'start': 416.325, 'duration': 1.94}], 'summary': 'The gofish framework allows setting ports and running the server easily with simple commands.', 'duration': 76.036, 'max_score': 342.229, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0342229.jpg'}, {'end': 539.112, 'src': 'embed', 'start': 475.94, 'weight': 4, 'content': [{'end': 478.909, 'text': 'so Here is the place sign in.', 'start': 475.94, 'duration': 2.969}, {'end': 480.449, 'text': "So it's really simple.", 'start': 479.409, 'duration': 1.04}, {'end': 483.771, 'text': 'The username is admin and the password is gophish.', 'start': 480.489, 'duration': 3.282}, {'end': 487.113, 'text': 'So G-O-P-H-I-S-H.', 'start': 483.971, 'duration': 3.142}, {'end': 492.415, 'text': 'Just press enter and here you are in the gophish admin dashboard.', 'start': 487.473, 'duration': 4.942}, {'end': 498.519, 'text': 'So I will start covering up this gophish admin dashboard in the next lecture.', 'start': 492.956, 'duration': 5.563}, {'end': 504.327, 'text': "but before that, let's go ahead where is it?", 'start': 498.519, 'duration': 5.808}, {'end': 505.447, 'text': 'and change the password.', 'start': 504.327, 'duration': 1.12}, {'end': 512.169, 'text': 'so you just need to click on the username and here you can change the admin username and all and the passwords.', 'start': 505.447, 'duration': 6.722}, {'end': 515.35, 'text': 'and here is the API key.', 'start': 512.169, 'duration': 3.181}, {'end': 518.289, 'text': 'you can just go ahead and reset it if you want.', 'start': 515.35, 'duration': 2.939}, {'end': 525.532, 'text': 'so here we have the fish was the old password and the new password right here.', 'start': 518.289, 'duration': 7.243}, {'end': 530.753, 'text': "so let's just click on save.", 'start': 525.532, 'duration': 5.221}, {'end': 537.031, 'text': 'you can see it updated successfully.', 'start': 534.469, 'duration': 2.562}, {'end': 539.112, 'text': "then let's just go ahead and log out.", 'start': 537.031, 'duration': 2.081}], 'summary': 'Gophish admin login: username=admin, password=gophish. password changed successfully.', 'duration': 63.172, 'max_score': 475.94, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0475940.jpg'}], 'start': 0.595, 'title': 'Go fish framework for corporate phishing', 'summary': 'Discusses the use of go fish framework for corporate penetration tests and the process of launching and accessing the server, providing a comprehensive overview for practical and effective real-life attacks.', 'chapters': [{'end': 249.124, 'start': 0.595, 'title': 'Corporate phishing with go fish', 'summary': "Covers the importance of social engineering in corporate penetration tests, emphasizing the use of phishing campaigns with the advanced framework 'go fish' for practical and effective real-life attacks.", 'duration': 248.529, 'highlights': ['The importance of social engineering in corporate penetration tests is emphasized, referencing NIST Special Publication 800-115 and its 5.3 social engineering section with 80 pages of guidance.', 'The significance of phishing as the primary social engineering tactic is highlighted, emphasizing its role in information gathering, gaining access, and expanding reach within a system.', "The practicality and effectiveness of using the 'Go Fish' framework for corporate-level phishing attacks are emphasized, including its advantages over other tools and its ability to run on a live server with SSL support for realistic simulations."]}, {'end': 559.438, 'start': 249.745, 'title': 'Launching go fish server and admin dashboard', 'summary': 'Demonstrates the process of downloading, launching, and accessing the go fish server, including setting up the listening port and accessing the admin dashboard, with a focus on the username and password setup as well as the api key, providing a comprehensive overview of the go fish framework.', 'duration': 309.693, 'highlights': ["Accessing the Go Fish admin dashboard with the username 'admin' and password 'gophish' allows entry into the dashboard for further exploration and management.", 'The process of setting up the listening port and accessing the Go Fish server through a terminal is demonstrated, providing a clear and concise method for launching the server.', 'The ability to change the admin username, password, and API key within the Go Fish admin dashboard is showcased, indicating the flexibility and customization options available within the framework.']}], 'duration': 558.843, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0595.jpg', 'highlights': ["The practicality and effectiveness of using the 'Go Fish' framework for corporate-level phishing attacks are emphasized, including its advantages over other tools and its ability to run on a live server with SSL support for realistic simulations.", 'The importance of social engineering in corporate penetration tests is emphasized, referencing NIST Special Publication 800-115 and its 5.3 social engineering section with 80 pages of guidance.', 'The significance of phishing as the primary social engineering tactic is highlighted, emphasizing its role in information gathering, gaining access, and expanding reach within a system.', 'The process of setting up the listening port and accessing the Go Fish server through a terminal is demonstrated, providing a clear and concise method for launching the server.', "Accessing the Go Fish admin dashboard with the username 'admin' and password 'gophish' allows entry into the dashboard for further exploration and management.", 'The ability to change the admin username, password, and API key within the Go Fish admin dashboard is showcased, indicating the flexibility and customization options available within the framework.']}, {'end': 1093.958, 'segs': [{'end': 584.351, 'src': 'embed', 'start': 559.438, 'weight': 0, 'content': [{'end': 567.862, 'text': 'I will like you all to move your go fish framework on a VPS so that you can connect a domain name with it now.', 'start': 559.438, 'duration': 8.424}, {'end': 575.826, 'text': 'you can do this thing on your Kali Linux machine or basically any operating system or anything whichever you are using.', 'start': 567.862, 'duration': 7.964}, {'end': 584.351, 'text': 'you can do this on that thing, but it will not be really convenient until you have a static IP address, because your domain name,', 'start': 575.826, 'duration': 8.525}], 'summary': 'Move go fish framework to vps for domain name connection.', 'duration': 24.913, 'max_score': 559.438, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0559438.jpg'}, {'end': 736.423, 'src': 'embed', 'start': 634.278, 'weight': 1, 'content': [{'end': 636.959, 'text': "if you don't have, you can even use my referral link.", 'start': 634.278, 'duration': 2.681}, {'end': 643.581, 'text': 'that will additionally give you $10 so that you can process and you can proceed with this lecture.', 'start': 636.959, 'duration': 6.622}, {'end': 645.842, 'text': 'now I will create a droplet here.', 'start': 643.581, 'duration': 2.261}, {'end': 646.863, 'text': 'droplet is a VPS.', 'start': 645.842, 'duration': 1.021}, {'end': 654.741, 'text': "yeah, I don't know what happened wrong, so I'll just go ahead and click create a droplet here and And it is still loading.", 'start': 646.863, 'duration': 7.878}, {'end': 656.082, 'text': 'Digital ocean is not working fine.', 'start': 654.761, 'duration': 1.321}, {'end': 660.347, 'text': 'Okay So here you need to choose a operating system.', 'start': 656.383, 'duration': 3.964}, {'end': 663.33, 'text': 'Now you can basically choose any operating system.', 'start': 660.527, 'duration': 2.803}, {'end': 664.592, 'text': "I'll go with the Ubuntu.", 'start': 663.41, 'duration': 1.182}, {'end': 667.256, 'text': "So it doesn't really matter.", 'start': 666.035, 'duration': 1.221}, {'end': 668.817, 'text': 'Here you can choose a size.', 'start': 667.456, 'duration': 1.361}, {'end': 670.658, 'text': 'Now this is just a phishing server.', 'start': 668.937, 'duration': 1.721}, {'end': 672.48, 'text': "Doesn't need a lot of RAM.", 'start': 671.099, 'duration': 1.381}, {'end': 674.721, 'text': 'So maybe $5 will be perfect.', 'start': 672.5, 'duration': 2.221}, {'end': 678.524, 'text': "Now I'll take the Bangalore which is most near to me.", 'start': 675.302, 'duration': 3.222}, {'end': 681.386, 'text': "And yeah that's all.", 'start': 679.725, 'duration': 1.661}, {'end': 683.287, 'text': 'You can add a SSH key if you want.', 'start': 681.526, 'duration': 1.761}, {'end': 685.889, 'text': "But I won't add any here.", 'start': 683.888, 'duration': 2.001}, {'end': 687.13, 'text': "Let's create.", 'start': 686.53, 'duration': 0.6}, {'end': 693.603, 'text': "and it'll just get created soon.", 'start': 691.582, 'duration': 2.021}, {'end': 702.085, 'text': 'So till then let me open my email to get the password because we are not using a SSH key here.', 'start': 693.843, 'duration': 8.242}, {'end': 719.231, 'text': "It's not going to take more than two minutes for all setup to come.", 'start': 702.105, 'duration': 17.126}, {'end': 727.051, 'text': 'Okay, the password has come.', 'start': 725.97, 'duration': 1.081}, {'end': 730.676, 'text': 'Maybe this will also work in some seconds.', 'start': 727.252, 'duration': 3.424}, {'end': 734.581, 'text': 'Got the mail on my phone.', 'start': 733.399, 'duration': 1.182}, {'end': 736.423, 'text': "It's not working here as well.", 'start': 734.821, 'duration': 1.602}], 'summary': 'Creating a $5 phishing server on digital ocean using ubuntu os in bangalore, encountering technical issues.', 'duration': 102.145, 'max_score': 634.278, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0634278.jpg'}, {'end': 1061.98, 'src': 'embed', 'start': 1028.459, 'weight': 4, 'content': [{'end': 1035.34, 'text': "So the speed is actually increasing and increasing so it'll get downloaded very soon basically.", 'start': 1028.459, 'duration': 6.881}, {'end': 1037.622, 'text': 'Yeah so it is keep on increasing now.', 'start': 1035.921, 'duration': 1.701}, {'end': 1042.387, 'text': 'Now it is just one.', 'start': 1040.007, 'duration': 2.38}, {'end': 1045.589, 'text': 'So we just got that thing downloaded.', 'start': 1043.749, 'duration': 1.84}, {'end': 1048.112, 'text': 'Clear the screen and unzip the file.', 'start': 1045.95, 'duration': 2.162}, {'end': 1055.136, 'text': 'So unzip and just press G and press tab to auto complete.', 'start': 1048.232, 'duration': 6.904}, {'end': 1056.957, 'text': 'Just unzip this file.', 'start': 1056.036, 'duration': 0.921}, {'end': 1060.479, 'text': 'Again unzip is not currently installed.', 'start': 1056.977, 'duration': 3.502}, {'end': 1061.98, 'text': "Let's just install unzip first of all.", 'start': 1060.519, 'duration': 1.461}], 'summary': 'The download speed is increasing, reaching completion soon.', 'duration': 33.521, 'max_score': 1028.459, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou01028459.jpg'}], 'start': 559.438, 'title': 'Setting up vps and digitalocean server', 'summary': 'Discusses setting up a vps for hosting the go fish framework, emphasizing the need for a static ip address and recommending digitalocean for its ease and $10 free credit. it also involves creating a digitalocean server, including creating a droplet, obtaining ip address, downloading and installing software, and encountering some installation and setup challenges.', 'chapters': [{'end': 683.287, 'start': 559.438, 'title': 'Setting up vps for go fish framework', 'summary': 'Discusses the process of setting up a vps for hosting the go fish framework, emphasizing the need for a static ip address and recommending digitalocean for its ease and $10 free credit using the coupon code do10.', 'duration': 123.849, 'highlights': ['Setting up a VPS on DigitalOcean is recommended for hosting the Go Fish framework due to the need for a static IP address and the availability of $10 free credit using the coupon code DO10.', 'Choosing an operating system and size for the VPS, such as Ubuntu and a $5 plan respectively, is discussed for setting up the phishing server.', 'The speaker mentions the option to use a referral link for additional $10 credit, facilitating the setup process for the lecture attendees.']}, {'end': 1093.958, 'start': 683.888, 'title': 'Setting up digitalocean server', 'summary': 'Involves setting up a digitalocean server, including creating a droplet, obtaining ip address, downloading and installing software, and encountering some installation and setup challenges.', 'duration': 410.07, 'highlights': ['Encountering challenges during setup', 'Downloading and installing software', 'Creating a droplet and obtaining IP address']}], 'duration': 534.52, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou0559438.jpg', 'highlights': ['Setting up a VPS on DigitalOcean is recommended for hosting the Go Fish framework due to the need for a static IP address and the availability of $10 free credit using the coupon code DO10.', 'Choosing an operating system and size for the VPS, such as Ubuntu and a $5 plan respectively, is discussed for setting up the phishing server.', 'The speaker mentions the option to use a referral link for additional $10 credit, facilitating the setup process for the lecture attendees.', 'Creating a droplet and obtaining IP address', 'Downloading and installing software', 'Encountering challenges during setup']}, {'end': 1941.357, 'segs': [{'end': 1197.58, 'src': 'embed', 'start': 1124.096, 'weight': 1, 'content': [{'end': 1130.318, 'text': 'but in this case we are using it on a vps and we will not be able to access this before.', 'start': 1124.096, 'duration': 6.222}, {'end': 1132.639, 'text': "uh, like if we don't edit it.", 'start': 1130.318, 'duration': 2.321}, {'end': 1139.271, 'text': 'so you can use any text editor, i will go with the nano now.', 'start': 1132.639, 'duration': 6.632}, {'end': 1141.282, 'text': 'here you will see that the port is 172.0..', 'start': 1139.271, 'duration': 2.011}, {'end': 1142.193, 'text': '0.1 and we need to edit it to 0.0.', 'start': 1141.282, 'duration': 0.911}, {'end': 1142.613, 'text': '0.0 so here we are 0.0.', 'start': 1142.193, 'duration': 0.42}, {'end': 1146.155, 'text': "0.0 and that's all, and i would actually change the port, so it will be 172.4.", 'start': 1142.613, 'duration': 3.542}, {'end': 1167.731, 'text': 'sorry, I just changed the port for my convenience.', 'start': 1146.155, 'duration': 21.576}, {'end': 1171.672, 'text': 'basically, and that is everything done.', 'start': 1167.731, 'duration': 3.941}, {'end': 1179.714, 'text': 'so I will just press ctrl X and Y and press enter and clear the screen.', 'start': 1171.672, 'duration': 8.042}, {'end': 1180.615, 'text': "and that's all.", 'start': 1179.714, 'duration': 0.901}, {'end': 1183.295, 'text': 'now you just need to start your go fish server.', 'start': 1180.615, 'duration': 2.68}, {'end': 1197.58, 'text': 'sorry, go fish server, or basically I believe that on a VPS we need to add the executable permissions.', 'start': 1183.295, 'duration': 14.285}], 'summary': 'Configuring vps: changed ip to 0.0.0.0 and port to 172.4.', 'duration': 73.484, 'max_score': 1124.096, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou01124096.jpg'}, {'end': 1397.103, 'src': 'embed', 'start': 1371.707, 'weight': 0, 'content': [{'end': 1380.172, 'text': 'In last lecture we set up the VPS with the Gofish framework and in this lecture we want to have a domain name pointing to that VPS so that we can use it.', 'start': 1371.707, 'duration': 8.465}, {'end': 1384.635, 'text': 'Now I would take a domain name from freenom.com.', 'start': 1380.773, 'duration': 3.862}, {'end': 1389.758, 'text': 'that gives the domain names for free for one year and if you want,', 'start': 1384.635, 'duration': 5.123}, {'end': 1397.103, 'text': 'you can basically get registered with a domain name that is most near to your target real domain name.', 'start': 1389.758, 'duration': 7.345}], 'summary': 'Setting up vps with gofish framework and acquiring a free domain from freenom.com.', 'duration': 25.396, 'max_score': 1371.707, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou01371707.jpg'}], 'start': 1094.833, 'title': 'Configuring go fish server on vps and acquiring domain name', 'summary': 'Covers configuring the go fish server on a vps, changing listening port to 0.0.0.0, adding executable permissions, setting up gofish on a vps, changing default credentials, acquiring a domain name from freenom.com, and configuring dns settings, resulting in a successful server startup and domain acquisition process.', 'chapters': [{'end': 1257.123, 'start': 1094.833, 'title': 'Configuring go fish server on vps', 'summary': 'Covers the process of editing the configuration file for the go fish server on a vps, including changing the listening port to 0.0.0.0 and adding executable permissions, resulting in successful server startup.', 'duration': 162.29, 'highlights': ['The chapter demonstrates editing the configuration file for the Go Fish server on a VPS, changing the listening port to 0.0.0.0, and adding executable permissions, leading to a successful server start.', "The process involves using a text editor (nano) to modify the configuration file, changing the port from 172.0.0.1 to 0.0.0.0, and adding executable permissions using 'chmod plus x', ensuring successful server startup.", "The speaker emphasizes the convenience of changing the port for personal preference and highlights the key steps of pressing 'ctrl X', 'Y', and 'enter' to save the changes and clear the screen after starting the server.", 'The chapter anticipates the future addition of a domain name to the server, eliminating the need for the IP address and enabling access through the domain name.']}, {'end': 1941.357, 'start': 1257.123, 'title': 'Setting up gofish on vps and acquiring a domain name', 'summary': 'Discusses setting up gofish on a vps, changing default credentials, and acquiring a domain name from freenom.com, emphasizing the process of configuring dns settings and requesting unblocking of the smtp server.', 'duration': 684.234, 'highlights': ['The chapter covers setting up GoFish on a VPS, changing default credentials, and acquiring a domain name from freenom.com, highlighting the process of configuring DNS settings and requesting unblocking of the SMTP server.', 'The instructor demonstrates the process of acquiring a domain name from freenom.com, emphasizing the importance of selecting a domain name near the target real domain name and the use of Google sign up for the test account.', "The instructor explains the process of configuring DNS settings for the acquired domain name, using digital ocean's name servers and highlighting the potential propagation time of up to 24 hours.", 'The chapter concludes with guidance on requesting unblocking of the SMTP server from the VPS provider, emphasizing the need to assure compliance and providing alternative steps if unable to resolve the issue.']}], 'duration': 846.524, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou01094833.jpg', 'highlights': ['The chapter covers setting up GoFish on a VPS, changing default credentials, and acquiring a domain name from freenom.com, highlighting the process of configuring DNS settings and requesting unblocking of the SMTP server.', 'The chapter demonstrates editing the configuration file for the Go Fish server on a VPS, changing the listening port to 0.0.0.0, and adding executable permissions, leading to a successful server start.', "The process involves using a text editor (nano) to modify the configuration file, changing the port from 172.0.0.1 to 0.0.0.0, and adding executable permissions using 'chmod plus x', ensuring successful server startup.", 'The instructor demonstrates the process of acquiring a domain name from freenom.com, emphasizing the importance of selecting a domain name near the target real domain name and the use of Google sign up for the test account.']}, {'end': 2494.582, 'segs': [{'end': 1967.929, 'src': 'embed', 'start': 1941.357, 'weight': 0, 'content': [{'end': 1948.92, 'text': 'we want to get a SSL certificate for our phishing server so that no user gets a warning about HTTPS.', 'start': 1941.357, 'duration': 7.563}, {'end': 1954.203, 'text': "so let's go ahead and get that thing, and I would also like to introduce screen to you guys.", 'start': 1948.92, 'duration': 5.283}, {'end': 1957.484, 'text': 'so we have a program called SCRWN.', 'start': 1954.203, 'duration': 3.281}, {'end': 1965.648, 'text': 'now you can just go ahead and type in apt-get install screen if you guys need to install that.', 'start': 1957.484, 'duration': 8.164}, {'end': 1967.929, 'text': 'So just go ahead and run this command.', 'start': 1966.648, 'duration': 1.281}], 'summary': 'Obtain ssl certificate to avoid https warning and introduce scrwn program.', 'duration': 26.572, 'max_score': 1941.357, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou01941357.jpg'}, {'end': 2078.452, 'src': 'embed', 'start': 2048.127, 'weight': 2, 'content': [{'end': 2051.649, 'text': 'So here you can see it will be running and now you can just go ahead and stop it if you want.', 'start': 2048.127, 'duration': 3.522}, {'end': 2057.893, 'text': 'That is how screen will help you to run your server 24 by seven and without need to SSH in that.', 'start': 2052.029, 'duration': 5.864}, {'end': 2064.337, 'text': "Now here's the website zero SSL.com which provides you, I believe it, they provide let's encrypt free SSL certificate.", 'start': 2058.373, 'duration': 5.964}, {'end': 2067.92, 'text': 'So we want to go ahead and get the SSL certificate from them.', 'start': 2064.998, 'duration': 2.922}, {'end': 2078.452, 'text': 'here. you can just enter your email if you want.', 'start': 2075.53, 'duration': 2.922}], 'summary': "Screen allows running server 24/7 without ssh. zerossl provides free let's encrypt ssl certificate.", 'duration': 30.325, 'max_score': 2048.127, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02048127.jpg'}, {'end': 2213.493, 'src': 'embed', 'start': 2149.008, 'weight': 4, 'content': [{'end': 2159.277, 'text': 'it has generated me the CSR, so I will just download this thing and I will save it now again, click on next,', 'start': 2149.008, 'duration': 10.269}, {'end': 2160.958, 'text': 'and this time it will create the account key.', 'start': 2159.277, 'duration': 1.681}, {'end': 2204.015, 'text': "It's taking a little long, but it should just get me the account key within one to two minutes.", 'start': 2198.297, 'duration': 5.718}, {'end': 2205.88, 'text': "I'm just waiting for it.", 'start': 2205.038, 'duration': 0.842}, {'end': 2213.493, 'text': 'and as soon as we will download this, we will click on next and then it will ask us to verify the domain name.', 'start': 2207.628, 'duration': 5.865}], 'summary': 'Generated csr, waiting for account key in 1-2 minutes.', 'duration': 64.485, 'max_score': 2149.008, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02149008.jpg'}, {'end': 2267.343, 'src': 'embed', 'start': 2237.351, 'weight': 5, 'content': [{'end': 2244.213, 'text': 'here make sure you are on the DNS verification.', 'start': 2237.351, 'duration': 6.862}, {'end': 2244.874, 'text': 'here it is.', 'start': 2244.213, 'duration': 0.661}, {'end': 2250.235, 'text': 'it is asking me for the domain verification and it asked me to create these records.', 'start': 2244.874, 'duration': 5.361}, {'end': 2252.636, 'text': 'so for this I will go to my digital ocean panel.', 'start': 2250.235, 'duration': 2.401}, {'end': 2258.678, 'text': 'here, there I will go to networking and maybe this interface will change in some time.', 'start': 2252.636, 'duration': 6.042}, {'end': 2267.343, 'text': 'they are saying this thing, but here I will go to domains and okay, here is the domain name.', 'start': 2258.678, 'duration': 8.665}], 'summary': 'Verify dns on digital ocean for domain verification.', 'duration': 29.992, 'max_score': 2237.351, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02237351.jpg'}, {'end': 2357.651, 'src': 'embed', 'start': 2327.79, 'weight': 3, 'content': [{'end': 2334.756, 'text': 'yeah, copy that and here paste it and create record now, as soon as you create these two records.', 'start': 2327.79, 'duration': 6.966}, {'end': 2338.239, 'text': 'so we want these two txt records here, are they?', 'start': 2334.756, 'duration': 3.483}, {'end': 2340.16, 'text': 'they have now been created.', 'start': 2338.239, 'duration': 1.921}, {'end': 2341.942, 'text': 'we can proceed for the verification.', 'start': 2340.16, 'duration': 1.782}, {'end': 2344.684, 'text': 'now. the problem is that this might take some time.', 'start': 2341.942, 'duration': 2.742}, {'end': 2347.767, 'text': 'you can just see here 15 to 20 minutes.', 'start': 2344.684, 'duration': 3.083}, {'end': 2349.088, 'text': 'uh, before clicking next.', 'start': 2347.767, 'duration': 1.321}, {'end': 2357.651, 'text': "so i will actually uh, you know, i'm not actually sure, but Have we gone next year?", 'start': 2349.088, 'duration': 8.563}], 'summary': 'Two txt records created for verification, may take 15-20 minutes before proceeding.', 'duration': 29.861, 'max_score': 2327.79, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02327790.jpg'}], 'start': 1941.357, 'title': 'Ssl certificate and scrwn', 'summary': "Covers obtaining an ssl certificate to avoid https warnings for a phishing server, introduces scrwn for server management, and details the process of obtaining a let's encrypt free ssl certificate from zerossl.com, including steps for generating a csr, account key, and domain verification, which may take up to 20 minutes.", 'chapters': [{'end': 2047.446, 'start': 1941.357, 'title': 'Ssl certificate and scrwn introduction', 'summary': 'Discusses obtaining an ssl certificate for a phishing server to avoid https warnings and introduces the usage of scrwn for server management, including installation and operation instructions.', 'duration': 106.089, 'highlights': ['Introducing the usage of SCRWN for server management, including installation and operation instructions.', 'Obtaining an SSL certificate for a phishing server to avoid HTTPS warnings.']}, {'end': 2494.582, 'start': 2048.127, 'title': 'Setting up ssl certificate', 'summary': "Explains the process of obtaining a let's encrypt free ssl certificate from zerossl.com, including steps for generating a csr, account key, and domain verification, which may take up to 20 minutes.", 'duration': 446.455, 'highlights': ["The chapter explains the process of obtaining a Let's Encrypt free SSL certificate from zeroSSL.com.", 'It includes steps for generating a CSR, account key, and domain verification, which may take up to 20 minutes.', 'The process involves creating and modifying DNS records, which can take 15 to 20 minutes for verification.', 'The speaker encounters issues with creating and modifying DNS records, leading to a delay in the verification process.']}], 'duration': 553.225, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou01941357.jpg', 'highlights': ['Obtaining an SSL certificate for a phishing server to avoid HTTPS warnings.', 'Introducing the usage of SCRWN for server management, including installation and operation instructions.', "The chapter explains the process of obtaining a Let's Encrypt free SSL certificate from zeroSSL.com.", 'The process involves creating and modifying DNS records, which can take 15 to 20 minutes for verification.', 'It includes steps for generating a CSR, account key, and domain verification, which may take up to 20 minutes.', 'The speaker encounters issues with creating and modifying DNS records, leading to a delay in the verification process.']}, {'end': 3395.686, 'segs': [{'end': 2567.793, 'src': 'embed', 'start': 2517.805, 'weight': 6, 'content': [{'end': 2524.229, 'text': 'phmc.ml is repeating two times which should not be the case so you basically need to remove this .', 'start': 2517.805, 'duration': 6.424}, {'end': 2531.252, 'text': 'phmc.ml, and you just need this part of the the record.', 'start': 2524.229, 'duration': 7.023}, {'end': 2534.814, 'text': 'so acme underscore, acme dash challenge.', 'start': 2531.252, 'duration': 3.562}, {'end': 2537.496, 'text': 'so this should be the record and then here should be the value.', 'start': 2534.814, 'duration': 2.682}, {'end': 2546.96, 'text': 'now the thing is that with the www, which is the second record, you will not be able to create it because you have not created the www record.', 'start': 2537.936, 'duration': 9.024}, {'end': 2553.762, 'text': 'so you basically need to create the www record first, and that should be a cname record.', 'start': 2546.96, 'duration': 6.802}, {'end': 2555.263, 'text': 'so go to cname.', 'start': 2553.762, 'duration': 1.501}, {'end': 2561.225, 'text': 'just add www here and just add the red sign here.', 'start': 2555.263, 'duration': 5.962}, {'end': 2564.431, 'text': "just click on create record And that's all.", 'start': 2561.225, 'duration': 3.206}, {'end': 2567.793, 'text': 'That is how you create the WWW record.', 'start': 2564.791, 'duration': 3.002}], 'summary': 'Remove duplicate phmc.ml, create cname record for www', 'duration': 49.988, 'max_score': 2517.805, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02517805.jpg'}, {'end': 2696.223, 'src': 'embed', 'start': 2604.78, 'weight': 2, 'content': [{'end': 2612.309, 'text': 'TXT record test MX toolbox is the one which I would recommend.', 'start': 2604.78, 'duration': 7.529}, {'end': 2619.077, 'text': 'so here DNS lookup, text record here and you just want to copy and paste these records in the test.', 'start': 2612.309, 'duration': 6.768}, {'end': 2621, 'text': 'it will just show you if they exist or not.', 'start': 2619.077, 'duration': 1.923}, {'end': 2626.848, 'text': 'here you just want to paste this thing and test for the record.', 'start': 2622.486, 'duration': 4.362}, {'end': 2629.09, 'text': 'and okay, some.', 'start': 2626.848, 'duration': 2.242}, {'end': 2630.01, 'text': 'okay, it is.', 'start': 2629.09, 'duration': 0.92}, {'end': 2633.392, 'text': 'yeah, here you can just see DNS record has been published.', 'start': 2630.01, 'duration': 3.382}, {'end': 2636.554, 'text': "let's check the second one, which we just published.", 'start': 2633.392, 'duration': 3.162}, {'end': 2640.516, 'text': 'so it will like it should be there.', 'start': 2636.554, 'duration': 3.962}, {'end': 2642.217, 'text': 'here we have text lookup.', 'start': 2640.516, 'duration': 1.701}, {'end': 2653.452, 'text': 'okay. so it again says that it has been published and that was just a quick fix of our last mistake.', 'start': 2646.488, 'duration': 6.964}, {'end': 2656.413, 'text': "so let's go ahead and, yeah, go to zero.", 'start': 2653.452, 'duration': 2.961}, {'end': 2657.594, 'text': "so let's click on next.", 'start': 2656.413, 'duration': 1.181}, {'end': 2663.557, 'text': 'okay, i just clicked on that and it is now checking and it should basically, uh,', 'start': 2657.594, 'duration': 5.963}, {'end': 2667.579, 'text': 'get the records because they have already been created and we have verified that thing too.', 'start': 2663.557, 'duration': 4.022}, {'end': 2672.161, 'text': 'okay, there is some unexpected error here.', 'start': 2667.579, 'duration': 4.582}, {'end': 2677.661, 'text': "you know, this error was something else, I really don't know.", 'start': 2674.838, 'duration': 2.823}, {'end': 2690.334, 'text': 'I will just go ahead and try once again, with the records trying.', 'start': 2677.661, 'duration': 12.673}, {'end': 2696.223, 'text': 'okay, I just click Next and now the certificate is basically Yeah, it is basically ready.', 'start': 2690.334, 'duration': 5.889}], 'summary': 'Using mx toolbox for dns lookup and text record test, verifying the records and fixing errors.', 'duration': 91.443, 'max_score': 2604.78, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02604780.jpg'}, {'end': 2763.718, 'src': 'embed', 'start': 2730.631, 'weight': 3, 'content': [{'end': 2732.453, 'text': 'I believe I have already downloaded this one.', 'start': 2730.631, 'duration': 1.822}, {'end': 2734.535, 'text': 'Okay domain.', 'start': 2733.974, 'duration': 0.561}, {'end': 2735.936, 'text': 'Yeah I have not downloaded that.', 'start': 2734.595, 'duration': 1.341}, {'end': 2738.979, 'text': 'Yeah certificate has been done.', 'start': 2737.638, 'duration': 1.341}, {'end': 2741.982, 'text': 'Now we have the domain key.', 'start': 2739.76, 'duration': 2.222}, {'end': 2751.827, 'text': 'Okay, we also got the domain key here, domain certificate here.', 'start': 2746.627, 'duration': 5.2}, {'end': 2758.393, 'text': 'now we can go ahead and set up the certificate in that what it is in the server.', 'start': 2751.827, 'duration': 6.566}, {'end': 2759.794, 'text': "so let's go ahead and do that.", 'start': 2758.393, 'duration': 1.401}, {'end': 2763.718, 'text': "I really don't need it, something else.", 'start': 2759.794, 'duration': 3.924}], 'summary': 'Domain key and certificate downloaded, ready for server setup.', 'duration': 33.087, 'max_score': 2730.631, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02730631.jpg'}, {'end': 3267.036, 'src': 'embed', 'start': 3225.023, 'weight': 0, 'content': [{'end': 3236.57, 'text': "now let's go ahead and try to visit the website phmcsecurities.ml, and it says unable to connect.", 'start': 3225.023, 'duration': 11.547}, {'end': 3241.113, 'text': 'wait a minute because we are not using HTTPS.', 'start': 3236.57, 'duration': 4.543}, {'end': 3247.051, 'text': 'maybe what I added here.', 'start': 3241.113, 'duration': 5.938}, {'end': 3256.554, 'text': 'Yeah So HTTPS is working fine.', 'start': 3254.493, 'duration': 2.061}, {'end': 3261.875, 'text': "You can see there is a green lock and this is from let's encrypt.", 'start': 3256.594, 'duration': 5.281}, {'end': 3267.036, 'text': "So that is how we get the SSL certificate and let's go ahead on seven to four.", 'start': 3262.275, 'duration': 4.761}], 'summary': "Successfully accessed website phmcsecurities.ml using https with let's encrypt ssl certificate.", 'duration': 42.013, 'max_score': 3225.023, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03225023.jpg'}, {'end': 3395.686, 'src': 'embed', 'start': 3362.114, 'weight': 1, 'content': [{'end': 3365.996, 'text': 'so i would recommend you renew it on every.', 'start': 3362.114, 'duration': 3.882}, {'end': 3370.959, 'text': 'yeah, it is 90 days, so you need to renew it after 90 days and it will be the same procedure.', 'start': 3365.996, 'duration': 4.963}, {'end': 3375.061, 'text': "so that's all done.", 'start': 3370.959, 'duration': 4.102}, {'end': 3378.863, 'text': "that's all for this lecture, and let me just show you guys the login page.", 'start': 3375.061, 'duration': 3.802}, {'end': 3384.887, 'text': "this time we'll take the certificate from let's encrypt.", 'start': 3378.863, 'duration': 6.024}, {'end': 3395.686, 'text': "so okay, it's still showing me a security exception, but let me add this remove the security exception.", 'start': 3385.677, 'duration': 10.009}], 'summary': "Recommend renewing certificate every 90 days, demonstrating login page with let's encrypt certificate.", 'duration': 33.572, 'max_score': 3362.114, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03362114.jpg'}], 'start': 2494.582, 'title': 'Dns records, certificate renewal, and ssl configuration', 'summary': "Covers creating dns txt and cname records, resolving mistakes, and checking using mx toolbox, renewing a certificate, encountering errors, and successfully downloading domain key and certificate, and configuring ssl certificates for a website, resulting in a successful implementation of https with let's encrypt certificate.", 'chapters': [{'end': 2633.392, 'start': 2494.582, 'title': 'Creating dns records and checking using mx toolbox', 'summary': "Covers the process of creating txt and cname records, including resolving a mistake in the txt record, creating a cname record for 'www', and checking the records using mx toolbox.", 'duration': 138.81, 'highlights': ["The TXT record 'phmc.ml' is repeating two times, which should be removed, and only the required part of the record should be kept, such as 'acme_challenge' and its value.", "The CNAME record for 'www' needs to be created first before creating the second record, and it should be added as a CNAME record using a red sign in the DNS settings.", 'Checking the DNS records can be done through the terminal or using MX toolbox, and it is recommended to use MX toolbox for DNS lookup and testing the records.']}, {'end': 2803.071, 'start': 2633.392, 'title': 'Certificate renewal process', 'summary': 'Discusses the process of renewing a certificate, encountering unexpected errors, and successfully downloading the domain key and certificate for server setup.', 'duration': 169.679, 'highlights': ['Encountered unexpected errors while trying to renew the certificate.', 'Successfully downloaded the domain key and certificate for server setup.', 'Published a quick fix for the last mistake.']}, {'end': 3395.686, 'start': 2803.071, 'title': 'Ssl certificate configuration', 'summary': "Covers the process of configuring ssl certificates for a website, including changing domain names, creating certificate and key files, troubleshooting connection issues, and ensuring proper server configuration, resulting in a successful implementation of https with let's encrypt certificate.", 'duration': 592.615, 'highlights': ['The process of configuring SSL certificates for a website, including changing domain names, creating certificate and key files, troubleshooting connection issues, and ensuring proper server configuration.', "Successful implementation of HTTPS with Let's Encrypt certificate.", 'Recommendation to renew SSL certificate every 90 days.']}], 'duration': 901.104, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou02494582.jpg', 'highlights': ["Successful implementation of HTTPS with Let's Encrypt certificate.", 'Recommendation to renew SSL certificate every 90 days.', 'Checking the DNS records can be done through the terminal or using MX toolbox, and it is recommended to use MX toolbox for DNS lookup and testing the records.', 'The process of configuring SSL certificates for a website, including changing domain names, creating certificate and key files, troubleshooting connection issues, and ensuring proper server configuration.', 'Successfully downloaded the domain key and certificate for server setup.', 'Published a quick fix for the last mistake.', "The CNAME record for 'www' needs to be created first before creating the second record, and it should be added as a CNAME record using a red sign in the DNS settings.", "The TXT record 'phmc.ml' is repeating two times, which should be removed, and only the required part of the record should be kept, such as 'acme_challenge' and its value.", 'Encountered unexpected errors while trying to renew the certificate.']}, {'end': 4058.759, 'segs': [{'end': 3422.769, 'src': 'embed', 'start': 3395.686, 'weight': 0, 'content': [{'end': 3400.07, 'text': "yeah, you can just see it is now actually let's encrypt certificate.", 'start': 3395.686, 'duration': 4.384}, {'end': 3402.112, 'text': 'you can see that right.', 'start': 3400.07, 'duration': 2.042}, {'end': 3409.279, 'text': 'so that was all in this lecture and from next lecture we will actually start working and start our phishing.', 'start': 3402.112, 'duration': 7.167}, {'end': 3410.42, 'text': 'so thank you so much for watching.', 'start': 3409.279, 'duration': 1.141}, {'end': 3412.721, 'text': 'Welcome back everyone.', 'start': 3412.06, 'duration': 0.661}, {'end': 3416.404, 'text': 'In this lecture we will actually go ahead and explore the GoFish dashboard.', 'start': 3412.801, 'duration': 3.603}, {'end': 3422.769, 'text': "So I have actually done some kind of you know I've done some kind of basic testing here.", 'start': 3416.824, 'duration': 5.945}], 'summary': "The lecture introduced let's encrypt certificate and will start phishing in the next session.", 'duration': 27.083, 'max_score': 3395.686, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03395686.jpg'}, {'end': 3537.538, 'src': 'embed', 'start': 3513.281, 'weight': 1, 'content': [{'end': 3522.241, 'text': 'basically, you want to get SMTP which allow you to spoof your email, like SMTP to go is a really good example,', 'start': 3513.281, 'duration': 8.96}, {'end': 3526.366, 'text': 'and we will basically cover SMTP to go in the last lecture.', 'start': 3522.241, 'duration': 4.125}, {'end': 3531.411, 'text': 'but for that, like before, that we will set up it with the Gmail.', 'start': 3526.366, 'duration': 5.045}, {'end': 3537.538, 'text': 'okay. so, first of all, you want to search for Gmail SMTP settings.', 'start': 3531.411, 'duration': 6.127}], 'summary': 'Learn about setting up smtp to spoof email using gmail smtp settings.', 'duration': 24.257, 'max_score': 3513.281, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03513281.jpg'}, {'end': 3804.515, 'src': 'embed', 'start': 3755.683, 'weight': 3, 'content': [{'end': 3758.064, 'text': 'So sign in and security maybe.', 'start': 3755.683, 'duration': 2.381}, {'end': 3762.527, 'text': "Right Let's go in that.", 'start': 3760.586, 'duration': 1.941}, {'end': 3769.49, 'text': "Here we should have something like let's secure apps.", 'start': 3764.428, 'duration': 5.062}, {'end': 3777.655, 'text': 'So I am not able to find that.', 'start': 3769.51, 'duration': 8.145}, {'end': 3779.67, 'text': 'Yeah, here it is.', 'start': 3779.07, 'duration': 0.6}, {'end': 3781.07, 'text': 'Allow less secure apps.', 'start': 3780.01, 'duration': 1.06}, {'end': 3782.151, 'text': 'I will just own it.', 'start': 3781.23, 'duration': 0.921}, {'end': 3786.051, 'text': 'And now I will be able to send it as Gmail.', 'start': 3783.251, 'duration': 2.8}, {'end': 3791.873, 'text': 'It is still blocking me here.', 'start': 3790.212, 'duration': 1.661}, {'end': 3797.394, 'text': 'So I believe I will not be able to use Gmail, guys.', 'start': 3793.953, 'duration': 3.441}, {'end': 3804.515, 'text': "So let's see if I can do something with this.", 'start': 3797.954, 'duration': 6.561}], 'summary': 'Struggling with gmail security settings, unable to send emails.', 'duration': 48.832, 'max_score': 3755.683, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03755683.jpg'}, {'end': 4058.759, 'src': 'embed', 'start': 3975.578, 'weight': 2, 'content': [{'end': 3989.61, 'text': 'So I will add phmc securities here and the port and SMTP server.', 'start': 3975.578, 'duration': 14.032}, {'end': 3993.434, 'text': 'So the port is again 587 and the server is this one.', 'start': 3989.771, 'duration': 3.663}, {'end': 4012.149, 'text': 'we have 587, this same 587, so I will just change the SMTP here.', 'start': 4002.179, 'duration': 9.97}, {'end': 4012.849, 'text': "okay, that's all.", 'start': 4012.149, 'duration': 0.7}, {'end': 4015.532, 'text': "with these settings, let's do a test again.", 'start': 4012.849, 'duration': 2.683}, {'end': 4018.615, 'text': 'it should work fine.', 'start': 4015.532, 'duration': 3.083}, {'end': 4020.437, 'text': 'I just hope it will send the email.', 'start': 4018.615, 'duration': 1.822}, {'end': 4031.347, 'text': 'Okay, just go for it.', 'start': 4029.986, 'duration': 1.361}, {'end': 4032.387, 'text': 'Yeah, email sent.', 'start': 4031.447, 'duration': 0.94}, {'end': 4033.868, 'text': 'So now the test was successful.', 'start': 4032.427, 'duration': 1.441}, {'end': 4037.549, 'text': 'Now we can just go ahead and just save this profile.', 'start': 4034.668, 'duration': 2.881}, {'end': 4041.171, 'text': 'I even got the email on my phone actually.', 'start': 4038.45, 'duration': 2.721}, {'end': 4043.232, 'text': 'So we just save this profile.', 'start': 4041.931, 'duration': 1.301}, {'end': 4046.814, 'text': "And okay, I will rename it to, it's not an email account.", 'start': 4043.532, 'duration': 3.282}, {'end': 4048.134, 'text': 'So I will rename it here.', 'start': 4046.834, 'duration': 1.3}, {'end': 4055.157, 'text': 'To just make sure I am working correctly.', 'start': 4050.075, 'duration': 5.082}, {'end': 4058.759, 'text': "PHMC Outlook account, right? Let's just save it.", 'start': 4055.477, 'duration': 3.282}], 'summary': 'Successfully configured phmc outlook account with smtp server on port 587.', 'duration': 83.181, 'max_score': 3975.578, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03975578.jpg'}], 'start': 3395.686, 'title': 'Gofish dashboard and smtp setup', 'summary': 'Explores setting up the gofish dashboard, configuring gmail smtp settings for phishing, demonstrating email spoofing, and setting up smtp for email campaigns, including overcoming issues with gmail and configuring an outlook account to send test emails.', 'chapters': [{'end': 3650.247, 'start': 3395.686, 'title': 'Exploring gofish dashboard', 'summary': "Highlights setting up the gofish dashboard, clearing the dashboard, and configuring a sending profile using gmail smtp settings for phishing, demonstrating how to spoof email and set up the sender's information.", 'duration': 254.561, 'highlights': ['The chapter demonstrates setting up the GoFish dashboard, including clearing the dashboard and configuring a sending profile using Gmail SMTP settings for phishing.', "The lecturer explains the process of setting up a sending profile with Gmail SMTP settings, including specifying the SMTP server, port, username, password, profile name, sender's name, and email spoofing, providing a practical demonstration of the process."]}, {'end': 4058.759, 'start': 3650.247, 'title': 'Setting up smtp for email campaigns', 'summary': 'Covers the process of configuring smtp settings to send test emails, encountering issues with gmail and successfully setting up an outlook account to send test emails.', 'duration': 408.512, 'highlights': ['Successfully setting up an Outlook account to send test emails, receiving the test email on the phone, and saving the profile.', "Encountering issues with Gmail's security settings, attempting to change settings to enable less secure apps, and ultimately deciding to use an Outlook account.", 'Troubleshooting issues with the SMTP settings, including checking the username, password, port, and server, and successfully sending a test email.']}], 'duration': 663.073, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou03395686.jpg', 'highlights': ['The lecturer demonstrates setting up the GoFish dashboard and configuring a sending profile using Gmail SMTP settings for phishing.', "The process of setting up a sending profile with Gmail SMTP settings is explained, including specifying the SMTP server, port, username, password, profile name, sender's name, and email spoofing.", 'Successfully setting up an Outlook account to send test emails, receiving the test email on the phone, and saving the profile.', "Encountering issues with Gmail's security settings, attempting to change settings to enable less secure apps, and ultimately deciding to use an Outlook account.", 'Troubleshooting issues with the SMTP settings, including checking the username, password, port, and server, and successfully sending a test email.']}, {'end': 4498.842, 'segs': [{'end': 4196.597, 'src': 'heatmap', 'start': 4081.018, 'weight': 0, 'content': [{'end': 4084.482, 'text': 'In this lecture we will talk about the landing page and the email template.', 'start': 4081.018, 'duration': 3.464}, {'end': 4091.871, 'text': "So let's go to landing page and it's really a great feature in GoFish framework that you can just give it a name.", 'start': 4085.003, 'duration': 6.868}, {'end': 4094.595, 'text': 'Let me just give it Facebook.', 'start': 4091.991, 'duration': 2.604}, {'end': 4099.392, 'text': 'okay now, I am NOT saying anything wrong about Facebook here.', 'start': 4096.049, 'duration': 3.343}, {'end': 4104.537, 'text': 'I am just using it for the testing purposes and I can basically use any website.', 'start': 4099.392, 'duration': 5.145}, {'end': 4109.361, 'text': 'but you know this is the most common one which people try to fish.', 'start': 4104.537, 'duration': 4.824}, {'end': 4117.389, 'text': "I'll just click on import site and I will add the URL of the page here facebook.com.", 'start': 4109.361, 'duration': 8.028}, {'end': 4121.615, 'text': "I'll just click on import Here.", 'start': 4117.389, 'duration': 4.226}, {'end': 4123.276, 'text': 'it has done all the work for me.', 'start': 4121.615, 'duration': 1.661}, {'end': 4136.424, 'text': 'I just want to click on captured submitted data and capture passwords and then redirect the users to Hold on Yeah, okay,', 'start': 4123.756, 'duration': 12.668}, {'end': 4143.428, 'text': 'so then redirect the users to real Facebook.com after they submit their data to me.', 'start': 4136.424, 'duration': 7.004}, {'end': 4160.055, 'text': "I'll just click on save page and Hold on for a moment The Facebook page has been saved and I'll just go ahead and create an email template now.", 'start': 4143.448, 'duration': 16.607}, {'end': 4164.358, 'text': 'So landing page was the page where visitor will go and submit his data.', 'start': 4160.175, 'duration': 4.183}, {'end': 4168.2, 'text': 'Email template is the email which he will receive.', 'start': 4164.778, 'duration': 3.422}, {'end': 4175.174, 'text': 'So we have again Facebook email.', 'start': 4168.439, 'duration': 6.735}, {'end': 4178.216, 'text': 'I will even import the email here now to import the email.', 'start': 4175.174, 'duration': 3.042}, {'end': 4188.548, 'text': 'you basically you know like you can add your own email in the HTML format, but a very important old email from my account now.', 'start': 4178.216, 'duration': 10.332}, {'end': 4196.597, 'text': 'I believe this account was used for Facebook a lot before.', 'start': 4188.548, 'duration': 8.049}], 'summary': 'The lecture covers creating a landing page and email template, using facebook as an example for testing, with a focus on capturing and redirecting user data.', 'duration': 94.156, 'max_score': 4081.018, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04081018.jpg'}, {'end': 4431.613, 'src': 'heatmap', 'start': 4350.378, 'weight': 2, 'content': [{'end': 4352.22, 'text': 'so I will just click on show original here.', 'start': 4350.378, 'duration': 1.842}, {'end': 4355.843, 'text': 'so show original will take me to the source of email.', 'start': 4352.22, 'duration': 3.623}, {'end': 4359.506, 'text': 'this is the source and there should be a copy to clipboard button.', 'start': 4355.843, 'duration': 3.663}, {'end': 4360.586, 'text': 'here it is.', 'start': 4359.506, 'duration': 1.08}, {'end': 4367.232, 'text': 'I just copied that thing to clipboard and I will here paste this thing and make sure this is ticked.', 'start': 4360.586, 'duration': 6.646}, {'end': 4368.733, 'text': "and let's go ahead and click on import.", 'start': 4367.232, 'duration': 1.501}, {'end': 4372.68, 'text': 'So like this will import everything.', 'start': 4370.219, 'duration': 2.461}, {'end': 4375.28, 'text': "Now I didn't have that Facebook message.", 'start': 4373.1, 'duration': 2.18}, {'end': 4376.98, 'text': 'You can even have a Facebook message.', 'start': 4375.3, 'duration': 1.68}, {'end': 4379.861, 'text': 'I will actually change it to Quora.', 'start': 4377, 'duration': 2.861}, {'end': 4383.842, 'text': 'Quora, what it was? Question.', 'start': 4381.961, 'duration': 1.881}, {'end': 4389.543, 'text': 'Here am I typing.', 'start': 4388.643, 'duration': 0.9}, {'end': 4397.285, 'text': 'So this is just for the testing purposes.', 'start': 4395.364, 'duration': 1.921}, {'end': 4398.125, 'text': 'You can add anything.', 'start': 4397.325, 'duration': 0.8}, {'end': 4399.285, 'text': "Let's just save it.", 'start': 4398.625, 'duration': 0.66}, {'end': 4402.63, 'text': 'We also made an email template.', 'start': 4401.209, 'duration': 1.421}, {'end': 4404.331, 'text': "Let's create users in group.", 'start': 4403.03, 'duration': 1.301}, {'end': 4410.954, 'text': 'Users in group are just a group to whom you want to send this email.', 'start': 4407.352, 'duration': 3.602}, {'end': 4413.055, 'text': 'So testing.', 'start': 4411.354, 'duration': 1.701}, {'end': 4416.977, 'text': 'Group and in this you want to.', 'start': 4415.256, 'duration': 1.721}, {'end': 4421.72, 'text': 'You can even import the CSV file or you can add the group manually.', 'start': 4417.137, 'duration': 4.583}, {'end': 4424.361, 'text': 'So Sager console.', 'start': 4421.8, 'duration': 2.561}, {'end': 4427.903, 'text': 'Sager or let me get it on my Gmail.', 'start': 4425.281, 'duration': 2.622}, {'end': 4431.613, 'text': 'the CEO added.', 'start': 4429.192, 'duration': 2.421}], 'summary': 'Demonstrating how to import, edit, and send emails with added options for messages and templates.', 'duration': 34.288, 'max_score': 4350.378, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04350378.jpg'}], 'start': 4059.906, 'title': 'Gofish framework and email campaign setup', 'summary': 'Covers setting up landing page and email template in gofish framework, enabling data capture and password retrieval, with a demonstration using facebook. it also includes email import, template creation, and campaign setup for testing, including contact import and scheduling.', 'chapters': [{'end': 4175.174, 'start': 4059.906, 'title': 'Gofish framework: landing page and email template', 'summary': 'Covers the configuration of the smtp profile, setting up the landing page for phishing, and creating an email template in the gofish framework, allowing users to capture submitted data and passwords, with a demonstration using facebook as an example.', 'duration': 115.268, 'highlights': ['The chapter covers the configuration of the SMTP profile, setting up the landing page for phishing, and creating an email template in the GoFish framework.', 'The demonstration involves using Facebook as an example for phishing, including capturing submitted data and passwords.', 'The lecturer emphasizes the ability to redirect users to the real Facebook website after submitting their data.', 'The lecturer demonstrates the ease of importing a website, like Facebook, for phishing purposes, and setting up the landing page to capture data and passwords.', 'The chapter explains the concept of the landing page as the place where visitors submit their data and the email template as the email they receive.']}, {'end': 4498.842, 'start': 4175.174, 'title': 'Email import and campaign setup', 'summary': 'Covers the process of importing emails, creating email templates, and setting up a new campaign for testing purposes, including importing contacts and scheduling the campaign.', 'duration': 323.668, 'highlights': ['The process of importing emails and setting up a new campaign for testing purposes is detailed, including importing contacts and scheduling the campaign.', 'The speaker discusses importing an email from Facebook for testing purposes and mentions using an old Quora email as a template, while emphasizing the process of importing contacts and creating a new campaign.', 'The speaker describes the steps to import emails, create email templates, and set up a new campaign, including specifying the email template, landing page, URL, and scheduling time for the campaign.', 'The chapter provides insights into the process of importing emails, creating email templates, specifying landing pages, and scheduling campaigns, with a focus on testing purposes and importing contacts.', 'Details are given about importing emails, creating email templates, specifying landing pages, scheduling campaigns, and importing contacts, with an emphasis on testing and using specific email accounts for the process.']}], 'duration': 438.936, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04059906.jpg', 'highlights': ['The chapter covers the configuration of the SMTP profile, setting up the landing page for phishing, and creating an email template in the GoFish framework.', 'The demonstration involves using Facebook as an example for phishing, including capturing submitted data and passwords.', 'The process of importing emails and setting up a new campaign for testing purposes is detailed, including importing contacts and scheduling the campaign.', 'The lecturer demonstrates the ease of importing a website, like Facebook, for phishing purposes, and setting up the landing page to capture data and passwords.', 'The lecturer emphasizes the ability to redirect users to the real Facebook website after submitting their data.']}, {'end': 5117.403, 'segs': [{'end': 4570.925, 'src': 'embed', 'start': 4498.862, 'weight': 2, 'content': [{'end': 4499.902, 'text': "Let's send this campaign.", 'start': 4498.862, 'duration': 1.04}, {'end': 4504.203, 'text': 'Camping scheduled.', 'start': 4503.242, 'duration': 0.961}, {'end': 4510.924, 'text': 'Say sending.', 'start': 4510.284, 'duration': 0.64}, {'end': 4521.219, 'text': "I'll basically go to dashboard here.", 'start': 4516.496, 'duration': 4.723}, {'end': 4523.08, 'text': 'so it says queued.', 'start': 4521.219, 'duration': 1.861}, {'end': 4530.544, 'text': "I don't know why it queued it.", 'start': 4523.08, 'duration': 7.464}, {'end': 4534.526, 'text': 'now there are no errors, but it actually queued it.', 'start': 4530.544, 'duration': 3.982}, {'end': 4541.613, 'text': 'so it is still.', 'start': 4534.526, 'duration': 7.087}, {'end': 4548.438, 'text': "the status is still sending and I'll get back to you guys in the next video where you know, like when I'll receive this email.", 'start': 4541.613, 'duration': 6.825}, {'end': 4551.12, 'text': "so I'll open the email and I'll show you guys.", 'start': 4548.438, 'duration': 2.682}, {'end': 4555.124, 'text': 'so on the dashboard you can basically see the email sent.', 'start': 4551.12, 'duration': 4.004}, {'end': 4556.825, 'text': 'okay, email has been sent.', 'start': 4555.124, 'duration': 1.701}, {'end': 4561.068, 'text': 'there is the email open email click link and the submitted data.', 'start': 4556.825, 'duration': 4.243}, {'end': 4563.27, 'text': "so let's do this thing in the next video here.", 'start': 4561.068, 'duration': 2.202}, {'end': 4567.093, 'text': "I had the time limitations, so I'll see you guys in the next lecture.", 'start': 4563.27, 'duration': 3.823}, {'end': 4567.994, 'text': 'thank you so much for watching.', 'start': 4567.093, 'duration': 0.901}, {'end': 4570.925, 'text': 'hey, welcome back guys in this lecture.', 'start': 4569.144, 'duration': 1.781}], 'summary': 'Campaign email sent, dashboard shows open, click, and submitted data', 'duration': 72.063, 'max_score': 4498.862, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04498862.jpg'}, {'end': 4750.01, 'src': 'embed', 'start': 4724.873, 'weight': 0, 'content': [{'end': 4730.517, 'text': 'you can just see, even Gmail is not giving me any issues about the fake phishing website and all.', 'start': 4724.873, 'duration': 5.644}, {'end': 4733.599, 'text': 'now, guys, there is some problem with the cloning of site here.', 'start': 4730.517, 'duration': 3.082}, {'end': 4736.101, 'text': 'you can just see this is not working at all.', 'start': 4733.599, 'duration': 2.502}, {'end': 4737.862, 'text': 'this is some problem with cloning.', 'start': 4736.101, 'duration': 1.761}, {'end': 4742.565, 'text': 'so you might just go ahead and enter the correct source of the page.', 'start': 4737.862, 'duration': 4.703}, {'end': 4746.508, 'text': 'this is some problem in cloning when we create some landing page.', 'start': 4742.565, 'duration': 3.943}, {'end': 4748.489, 'text': "but let's go ahead and check the dashboard.", 'start': 4746.508, 'duration': 1.981}, {'end': 4750.01, 'text': "let's refresh the dashboard.", 'start': 4748.489, 'duration': 1.521}], 'summary': 'Issues with cloning a site, need to enter correct source, checking dashboard.', 'duration': 25.137, 'max_score': 4724.873, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04724873.jpg'}, {'end': 4927.481, 'src': 'embed', 'start': 4891.996, 'weight': 1, 'content': [{'end': 4904.521, 'text': "campaign website template will be, let's add the same template, my site.", 'start': 4891.996, 'duration': 12.525}, {'end': 4918.239, 'text': 'so everything is fine.', 'start': 4917.179, 'duration': 1.06}, {'end': 4921.72, 'text': 'sending profile will be the same and the group will be temp mail.', 'start': 4918.239, 'duration': 3.481}, {'end': 4925.101, 'text': "this time let's launch this campaign as well.", 'start': 4921.72, 'duration': 3.381}, {'end': 4927.481, 'text': 'so it will send me the email within one minute.', 'start': 4925.101, 'duration': 2.38}], 'summary': 'Launching campaign with same template, group, and profile, sending email within one minute.', 'duration': 35.485, 'max_score': 4891.996, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04891996.jpg'}], 'start': 4498.862, 'title': 'Email campaign and phishing website', 'summary': 'Discusses sending a campaign email, encountering a queuing issue, and checking the email status on the dashboard. it also covers the creation of a phishing website, issues with cloning and framework, launching an email campaign, and exporting campaign results.', 'chapters': [{'end': 4570.925, 'start': 4498.862, 'title': 'Campaign email sent', 'summary': 'Discusses sending a campaign email, encountering a queuing issue, and checking the email status on the dashboard, with plans to review the email and its data in the next video.', 'duration': 72.063, 'highlights': ['The email has been sent, as indicated on the dashboard.', 'An issue with queuing the email is mentioned, although no specific reason for the queuing is provided.', 'The speaker plans to review the email and its data in the next video due to time limitations.', "The status of the email is still 'sending', indicating it's in the process of being sent.", 'The speaker will follow up in the next video by opening the email and demonstrating its content.']}, {'end': 5117.403, 'start': 4570.925, 'title': 'Phishing website creation and email campaign launch', 'summary': 'Covers the creation of a phishing website, encountering issues with cloning and framework, launching an email campaign, and exporting campaign results.', 'duration': 546.478, 'highlights': ['Encountered issues with cloning the phishing website, leading to problems with the landing page and framework.', "Launched an email campaign targeting a test email group, using a website template and monitoring the campaign's progress.", 'Successfully created a phishing website clone, captured and exported submitted data from the campaign results.']}], 'duration': 618.541, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou04498862.jpg', 'highlights': ['Successfully created a phishing website clone, captured and exported submitted data from the campaign results.', "Launched an email campaign targeting a test email group, using a website template and monitoring the campaign's progress.", 'The email has been sent, as indicated on the dashboard.', 'An issue with queuing the email is mentioned, although no specific reason for the queuing is provided.', 'Encountered issues with cloning the phishing website, leading to problems with the landing page and framework.']}, {'end': 5724.999, 'segs': [{'end': 5186.732, 'src': 'embed', 'start': 5117.403, 'weight': 0, 'content': [{'end': 5119.784, 'text': "so i don't know, i just missed this arrow here.", 'start': 5117.403, 'duration': 2.381}, {'end': 5122.384, 'text': 'so here you can just see, there is a small arrow.', 'start': 5119.784, 'duration': 2.6}, {'end': 5129.246, 'text': 'you can click on this and it will show you the exact timeline for the person, with the exact date and time as well,', 'start': 5122.384, 'duration': 6.862}, {'end': 5132.887, 'text': 'and here you have the replay credentials and the view details.', 'start': 5129.246, 'duration': 3.641}, {'end': 5136.688, 'text': 'you can click here and it will even show you the credentials.', 'start': 5132.887, 'duration': 3.801}, {'end': 5143.815, 'text': 'so was the main purpose, and like i was just trying to get where this is, i was not getting this thing.', 'start': 5136.688, 'duration': 7.127}, {'end': 5148.7, 'text': 'now you can just see where do you want the credentials to be submitted to?', 'start': 5143.815, 'duration': 4.885}, {'end': 5151.863, 'text': 'so you know, let me, like you can just click here.', 'start': 5148.7, 'duration': 3.163}, {'end': 5152.644, 'text': 'replay credentials.', 'start': 5151.863, 'duration': 0.781}, {'end': 5156.748, 'text': 'it will just try to, uh, log you with these credentials.', 'start': 5152.644, 'duration': 4.104}, {'end': 5158.83, 'text': "if it is able to, let's go ahead and try that.", 'start': 5156.748, 'duration': 2.082}, {'end': 5170.594, 'text': 'so it will just redirect to my site with the given credentials and it will not be able to log me in because the credentials are.', 'start': 5162.895, 'duration': 7.699}, {'end': 5171.516, 'text': 'you know they are fake.', 'start': 5170.594, 'duration': 0.922}, {'end': 5175.983, 'text': 'you can see cookies are blocked and not supported by the web browser.', 'start': 5172.66, 'duration': 3.323}, {'end': 5179.206, 'text': 'you must enable cookies to use wordpress.', 'start': 5175.983, 'duration': 3.223}, {'end': 5186.732, 'text': "now actually, the cookies are blocked, so i'm not able to do that and i believe my site will not allow me to do this kind of work.", 'start': 5179.206, 'duration': 7.526}], 'summary': 'The transcript discusses accessing and using replay credentials, encountering issues with blocked cookies, and attempting to log in with fake credentials.', 'duration': 69.329, 'max_score': 5117.403, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou05117403.jpg'}, {'end': 5274.357, 'src': 'embed', 'start': 5245.747, 'weight': 3, 'content': [{'end': 5248.049, 'text': 'you know about the phishing with go fish.', 'start': 5245.747, 'duration': 2.302}, {'end': 5250.531, 'text': "so in this lecture i'll talk about the email spoofing.", 'start': 5248.049, 'duration': 2.482}, {'end': 5253.013, 'text': "now for email spoofing, it's really simple.", 'start': 5250.531, 'duration': 2.482}, {'end': 5260.298, 'text': 'you need any smtp server that allow you to send email without the verification of the domain name.', 'start': 5253.013, 'duration': 7.285}, {'end': 5263.02, 'text': 'now, smtp to go is one of them.', 'start': 5260.298, 'duration': 2.722}, {'end': 5266.123, 'text': 'there are a lot, there are plenty of them.', 'start': 5263.02, 'duration': 3.103}, {'end': 5274.357, 'text': "Now, I don't say that you guys should do this and I am not pointing anything to SMTP to go here.", 'start': 5266.903, 'duration': 7.454}], 'summary': 'Lecture covers email spoofing using smtp servers, including smtp to go, for sending emails without domain verification.', 'duration': 28.61, 'max_score': 5245.747, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou05245747.jpg'}, {'end': 5318.145, 'src': 'embed', 'start': 5294.713, 'weight': 4, 'content': [{'end': 5302.039, 'text': 'you might want to get a paid SMTP server or might want to set your own SMTP server on a VPS.', 'start': 5294.713, 'duration': 7.326}, {'end': 5307.962, 'text': "but I'll do it in a controlled manner because you know, this also harm the reputation of the company.", 'start': 5302.039, 'duration': 5.923}, {'end': 5312.704, 'text': 'so SMTP to go IP address might get harm from this.', 'start': 5307.962, 'duration': 4.742}, {'end': 5314.444, 'text': "so I'll do it in a really controlled manner.", 'start': 5312.704, 'duration': 1.74}, {'end': 5318.145, 'text': "okay, so let's go to sending profile now for this.", 'start': 5314.444, 'duration': 3.701}], 'summary': "Recommendation to use a paid or self-hosted smtp server to avoid harming company's ip reputation.", 'duration': 23.432, 'max_score': 5294.713, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou05294713.jpg'}, {'end': 5687.945, 'src': 'embed', 'start': 5660.688, 'weight': 5, 'content': [{'end': 5666.47, 'text': 'You can just see email has been spoofed successfully and I fear they would have just panned me for this thing.', 'start': 5660.688, 'duration': 5.782}, {'end': 5669.791, 'text': 'See that.', 'start': 5666.49, 'duration': 3.301}, {'end': 5674.554, 'text': "okay, actually it didn't land in spam.", 'start': 5672.392, 'duration': 2.162}, {'end': 5676.896, 'text': "so that is why they didn't ban me.", 'start': 5674.554, 'duration': 2.342}, {'end': 5682.06, 'text': "and if i send this thing to gmail, maybe it'll land in spam and they will ban me up.", 'start': 5676.896, 'duration': 5.164}, {'end': 5686.083, 'text': 'so i can just see it is taking me to the phishing page.', 'start': 5682.06, 'duration': 4.023}, {'end': 5687.945, 'text': 'it is even https.', 'start': 5686.083, 'duration': 1.862}], 'summary': 'Email spoofing successful, potentially leading to phishing page, with fear of being banned.', 'duration': 27.257, 'max_score': 5660.688, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou05660688.jpg'}], 'start': 5117.403, 'title': 'Troubleshooting replay credentials and phishing with go fish and email spoofing', 'summary': 'Covers troubleshooting replay credentials, including accessing the exact timeline, replaying credentials, and encountering issues with blocked cookies and unsupported web browser. it also delves into the use of go fish for phishing, email spoofing with an smtp server, potential risks, successful spoofing of an email, illustrating the potential for harm, and the need for caution.', 'chapters': [{'end': 5186.732, 'start': 5117.403, 'title': 'Troubleshooting replay credentials', 'summary': 'Covers troubleshooting replay credentials, including accessing the exact timeline for the person, replaying credentials, and encountering issues with blocked cookies and unsupported web browser.', 'duration': 69.329, 'highlights': ['The feature to access the exact timeline for the person by clicking on a small arrow is demonstrated, providing precise date and time details.', "The process of replaying credentials is outlined, including the option to click on 'replay credentials' and attempting to log in with the given credentials.", 'Encountering an issue with blocked cookies and an unsupported web browser, preventing successful login and impeding the ability to use WordPress.']}, {'end': 5724.999, 'start': 5186.732, 'title': 'Phishing with go fish and email spoofing', 'summary': 'Covers the use of go fish for phishing and the process of email spoofing with an smtp server, highlighting the potential risks and the successful spoofing of an email, illustrating the potential for harm and the need for caution.', 'duration': 538.267, 'highlights': ['The transcript discusses the use of Go Fish for phishing and the process of email spoofing with an SMTP server, highlighting the potential risks and the successful spoofing of an email.', "The speaker emphasizes the need for caution and control when using SMTP servers for email spoofing, noting the potential harm to the reputation of the company and the server's IP address.", 'The transcript mentions the successful spoofing of an email and the potential consequences, including the email potentially landing in spam folders and the risk of being banned by email providers.']}], 'duration': 607.596, 'thumbnail': 'https://coursnap.oss-ap-southeast-1.aliyuncs.com/video-capture/S6S5JF6Gou0/pics/S6S5JF6Gou05117403.jpg', 'highlights': ["The process of replaying credentials is outlined, including the option to click on 'replay credentials' and attempting to log in with the given credentials.", 'The feature to access the exact timeline for the person by clicking on a small arrow is demonstrated, providing precise date and time details.', 'Encountering an issue with blocked cookies and an unsupported web browser, preventing successful login and impeding the ability to use WordPress.', 'The transcript discusses the use of Go Fish for phishing and the process of email spoofing with an SMTP server, highlighting the potential risks and the successful spoofing of an email.', "The speaker emphasizes the need for caution and control when using SMTP servers for email spoofing, noting the potential harm to the reputation of the company and the server's IP address.", 'The transcript mentions the successful spoofing of an email and the potential consequences, including the email potentially landing in spam folders and the risk of being banned by email providers.']}], 'highlights': ["The practicality and effectiveness of using the 'Go Fish' framework for corporate-level phishing attacks are emphasized, including its advantages over other tools and its ability to run on a live server with SSL support for realistic simulations.", 'The chapter covers setting up GoFish on a VPS, changing default credentials, and acquiring a domain name from freenom.com, highlighting the process of configuring DNS settings and requesting unblocking of the SMTP server.', 'Setting up a VPS on DigitalOcean is recommended for hosting the Go Fish framework due to the need for a static IP address and the availability of $10 free credit using the coupon code DO10.', 'The process of setting up the listening port and accessing the Go Fish server through a terminal is demonstrated, providing a clear and concise method for launching the server.', 'The lecturer demonstrates setting up the GoFish dashboard and configuring a sending profile using Gmail SMTP settings for phishing.', 'Obtaining an SSL certificate for a phishing server to avoid HTTPS warnings.', 'The chapter covers the configuration of the SMTP profile, setting up the landing page for phishing, and creating an email template in the GoFish framework.', "The process of replaying credentials is outlined, including the option to click on 'replay credentials' and attempting to log in with the given credentials.", 'The importance of social engineering in corporate penetration tests is emphasized, referencing NIST Special Publication 800-115 and its 5.3 social engineering section with 80 pages of guidance.']}