Commit Graph

720 Commits (ba38bfdbdd8e0d80f8c0341e74ddf29abcff05a0)

Author SHA1 Message Date
Jordan Wright 0c5925aeec Fixed template validation to better support the all the possible template tags. Fixes #1189 2018-09-08 18:04:21 -05:00
Jordan Wright 159ea126a0 Bumped version to 0.7.0 2018-09-04 20:22:45 -05:00
Jordan Wright 15e57b6cd0 Add {{.BaseURL}} template tag to provide the root URL for static files. Fixes #1182 2018-09-03 20:28:32 -05:00
Jordan Wright de3c3a2e9c Fixed ability to sort campaign results by reported status. Fixes #1157 2018-09-02 12:18:41 -05:00
Jordan Wright fa1d4d74b0 Added sweetalert2 delete dialogs to all objects for consistency. 2018-09-02 12:11:06 -05:00
Jordan Wright 7dcf30f277
Add Support for Timed Campaigns (#1184)
This builds on the work from @c-f in #1090 to fully add support for "timed" campaigns, in which the emails are spaced apart as opposed to all being sent at once.
2018-09-02 11:17:52 -05:00
Jordan Wright 9f334281ab Added X-Mailer and X-Gophish-Contact headers (Ref: #1057) 2018-06-18 21:37:59 -05:00
Jordan Wright f09b448ec1 Added device details to clicked link and submitted data events. Fixes #1009 2018-06-12 20:37:09 -05:00
Jordan Wright b2bd879318 Implemented view change to HTML WSYWIG view when HTML is imported for landing pages and email templates. Fixes #1100 2018-06-11 20:16:28 -05:00
Jordan Wright 1efb71d1e9 Added transparency handler to return information JSON when a "+" is appended to a valid result ID (ref #1057) 2018-06-09 20:58:05 -05:00
Jordan Wright 64c5e54c64 Added a contact_address entry in config.json to support transparency efforts (ref #1057).
Also added a warning in the case where a contact address isn't provided, and fixed the JSON formatting of the configuration.
2018-06-09 18:17:22 -05:00
Jordan Wright da6091e021 Add migration to change MySQL storage of HTML to be mediumtext to hold larger HTML pages. Fixes #1067 2018-06-09 18:10:27 -05:00
Jordan Wright 240a0d3ad2 Simple check for empty columns in CSV import to prevent crashes 2018-06-09 14:20:14 -05:00
Jordan Wright 35a8f13990 Improved group CSV parsing. Added ability to download CSV template from the group modal. 2018-06-09 13:22:11 -05:00
Jordan Wright ebb6cd61b2 Implemented the ability to preview landing pages when sending a test email. 2018-06-08 21:20:52 -05:00
Jordan Wright a04f6d031b Cleaned up dashboard page when no campaigns have been launched 2018-05-26 21:37:22 -05:00
Jordan Wright 420410b52c Refactored result updating to be in result.go.
Added the modified_date field to results so it's easy to keep track of the last results that were modified without having to parse every event. Updated the tests to reflect the changes.
2018-05-26 21:26:34 -05:00
Jordan Wright 222399c5f6 De-emphasized campaign report icon while we don't have clients available. 2018-05-24 20:32:08 -05:00
Jordan Wright f7dee1e938 Removed directory listing of static assets. Fixes #1077. Fixes #815 2018-05-23 23:03:48 -05:00
Jordan Wright 23f0c21555
Bumping version to 0.6.0 2018-05-03 19:13:07 -05:00
Jordan Wright 5d23263898
Moved logging to logrus package. Not perfect yet (still want to update the access logs), but should set the foundation to make better logging in the future. 2018-05-03 19:07:41 -05:00
Jordan Wright 5f3c94d0cf
Add support for authenticating to the API via an Authorization Bearer token. 2018-04-21 12:19:58 -05:00
Jordan Wright e1d5c809b2
Removed redundant </div> tag. Fixes #1041 2018-04-20 20:47:29 -05:00
Jordan Wright 0b91404c4f
Resetting connection properly when the underlying TCP connection breaks. Fixes #997 2018-04-20 20:33:00 -05:00
Jordan Wright 3a7a62e9d6
Changed /api/reset to require API key instead of just requiring a valid session. Fixes #1028 2018-03-29 20:59:26 -05:00
Jordan Wright 535fbf487b
Bumped required Go version to 1.8 2018-03-26 21:13:11 -05:00
Jordan Wright 2131c17c33
Fixing SSRF by requiring an API key for all import endpoints. Fixes #1026 2018-03-26 21:04:22 -05:00
Jordan Wright 9ba3f04d1e
For now, avoid rendering the "campaign created" events on the timeline to make things more consolidated. Fixes #999 2018-03-22 22:16:59 -05:00
Jordan Wright 2ff0c3d95c
Storing the underlying connection error after the max connection attempts have been reached. Fixes #963 2018-03-22 22:05:24 -05:00
Jordan Wright eb2f0e38c7
Better handling of template errors when rendering the phishing page. Fixes #1008. 2018-03-22 21:29:07 -05:00
Jordan Wright f21536da7c
Adding "Report Email" Support (#1014)
Adds the capability to report phishing campaigns using an email client extension.

**Note: Gophish does not currently provide an email client extension out of the box. This is simply a mechanism to let existing email client add-ons send report status information to Gophish, and have that information reflected in the dashboard.**
2018-03-18 22:03:00 -05:00
derpadoo 709e83bade Ansible zip folder reorg (#1002)
* Updated README

* Updated playbook to work with new .zip file structure and cleaned up misc. parts

* Added missing quotes to be safe for variable interpretation
2018-03-13 19:53:20 -05:00
Jordan Wright c9ff8714a0
Moved rid parameter to a separate constant. Fixes #911 2018-02-22 23:02:27 -06:00
Jordan Wright 1426376aa5
Added --disable-mailer flag to prevent starting the built-in mailer. Fixes #935 2018-02-22 22:26:59 -06:00
Jordan Wright 3d58d8362e
Moved creation of URLs to net.URL instances to handle custom paths and parameters. Fixes #969 2018-02-22 22:11:28 -06:00
Konrads Smelkovs 29555085c0 If Subject is empty, don't set the header
Fixes #955
2018-02-10 13:46:08 -06:00
Jordan Wright 0f4ac70049
Fixed the way the initial admin is created to better support MySQL installations. Fixes #948 2018-02-08 19:04:59 -06:00
Jordan Wright 8d37bb1b39
Updated README to point to correct admin server URL 2018-01-27 14:02:59 -06:00
Jordan Wright 31a233197e
Bumping to version 0.5.0 2018-01-21 20:51:54 -06:00
Shuhei Kitagawa 44afb2b965 Isolate model tests (#933)
* isolates Group model tests

* move SMTP related tests from models_test.go to smtp_test.go

* isolate Page model tests

* isolate Result model tests
2018-01-19 18:11:00 -06:00
Shuhei Kitagawa 55b0da4aa9 Separate user model test cases into a independent test file (#930) 2018-01-18 19:54:12 -06:00
Jordan Wright ea558522a0
Events are now displayed with per-second accuracy. Fixes #909 2018-01-13 18:41:08 -06:00
Jordan Wright 8def08f46d
Changed select2 dropdowns to be in alphabetical format. Fixes #899 2018-01-13 18:12:09 -06:00
Jordan Wright e995b0fcb7 Adding ability to use template variables in the campaign URL. Fixes #844 2018-01-13 17:49:42 -06:00
Shuhei Kitagawa d7810ddd2b Fix to raise error when trying to register a duplicate username (#926)
This corrects a minor error from recent changes in which registering an existing username didn't throw an error.
2018-01-13 16:35:58 -06:00
Shuhei Kitagawa 405bc5effe Refactor GetUserByUsername method not to suppress an error (#920)
Also adding some other tests for the User models.
2018-01-11 18:37:38 -06:00
Shuhei Kitagawa db19f0ac2a Remove redundant return nil statement in user.go (#921)
Removing some redundant statements in user.go.
Adding test cases for user models.
2018-01-11 18:11:57 -06:00
Thiago-Medeiros a5c6ffb572 Fix MySQL syntax error in maillogs migration.
update autoincrement -> auto_increment
add ";" after drop table
2018-01-07 16:43:26 -06:00
Shuhei Kitagawa 7d67ccc3da Adjust CSS to support long table values 2018-01-07 16:42:11 -06:00
Shuhei Kitagawa 3f5a8262f8 Add gophish_admin.crt and gophish_admin.key to .gitignore (#916) 2018-01-07 16:40:41 -06:00