cristiancmoises
/
gophish
mirror of https://github.com/gophish/gophish
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
793 Commits
25 Branches
17 Tags
118 MiB
Commit Graph

195 Commits (d0ff3829e58832136c2f56309f2872fd6c3167be)

Author SHA1 Message Date
Jordan Wright 871114a17d Cleaning up RobotsHandler 2017-04-27 18:14:14 -05:00
Matt D 5f5c8141c9 Add robots.txt handler (#604) 
Disallow all robots from accessing the phishing server, to prevent phishing materials from being indexed during campaigns.
 2017-04-27 18:04:22 -05:00
Jordan Wright d67dcc889a Don't overwrite status to email opened if the user has already clicked the link or submitted data. Fixes #529 2017-02-23 23:23:05 -06:00
Jordan Wright 7453fd3b48 Added summary routes for groups. 
Routes:
/api/groups/summary
/api/groups/:id/summary

The UI is now using these routes for the "Users & Groups" page.
 2017-01-14 17:26:04 -06:00
Jordan Wright 8738ebbb35 Added campaign summary routes: 
/api/campaigns/summary
/api/campaigns/:id/summary

This is part of #505
 2017-01-05 21:48:54 -06:00
Jordan Wright 9982769d0f Making result statuses more granular as part of #505 2017-01-05 17:40:45 -06:00
Jordan Wright a05ee944a6 Added a route to allow paths in URL and still enable tracking. Fixes #498 2016-12-26 16:23:07 -06:00
Jordan Wright f195a8c7d9 Now recording address and user-agent when tracking pixel is requested. Fixes #427 2016-11-20 23:22:58 -06:00
Jordan Wright f12af50d46 Adding support for Mysql (#442) 
Thanks, @svigne1!

Fixes #53
 2016-11-19 10:37:22 -06:00
Jordan Wright 8f62e77884 Removed unused Location header 2016-11-19 09:16:59 -06:00
Jordan Wright 770bff192a Merge branch 'master' of https://github.com/gophish/gophish 2016-09-15 00:27:31 -05:00
Jordan Wright 7740bb3e95 Added ability to use {{.URL}} and {{.From}} in landing pages 2016-09-15 00:27:10 -05:00
s vignesh 208b3e098c Fixing Memory Leak When Importing a Site 2016-09-15 01:03:55 -04:00
Jordan Wright 103fd72cc8 Fixing context issues with Go 1.7. 2016-09-14 22:24:51 -05:00
Jordan Wright ac62f33e80 Now capturing IP and User Agent information in event logs. Fixes #280 2016-08-08 18:28:19 -05:00
Jordan Wright 33df3c3868 Added the version to the settings page. 2016-08-06 18:58:34 -05:00
Jordan Wright 576aa469e9 Adding the ability to replay credentials from the campaign results page 2016-08-06 18:06:18 -05:00
Jordan Wright 2eb2bf90a1 Added ability to use template values in Landing Pages. Fixes #327 2016-07-24 19:37:14 -05:00
Jordan Wright 1dbf061d87 Implement the ability to complete a campaign. Fixes #290. 
First implementation of new alert format.
 2016-07-11 22:11:40 -05:00
Rob Cutmore 97c9bd16d1 Fix comments for group API functions 2016-06-23 06:04:35 -04:00
Jordan Wright c5d6792bba Added /campaigns/:id/results endpoint to return campaign summary and make results page much quicker. 
Fixes 282.
 2016-06-07 22:31:55 -05:00
Jordan Wright 082023aae0 Adding the ability to schedule campaigns. Fixes #21 2016-06-07 21:42:09 -05:00
Jordan Wright 1933eb7ff1 Adding better error handling for SMTP server 
JSBeautify sending_profiles.js
 2016-05-30 14:53:32 -05:00
Jordan Wright 49b0646454 Fixed static file handling on phishing server + documentation. Fixes #164 2016-03-23 14:11:47 -05:00
Jordan Wright b10c4b3d3a Now returning valid tracking image. Fixes #202 2016-03-18 23:35:07 -05:00
Jordan Wright 52b9eda3b2 Added support for redirect URL's after creds are submitted. Fixes #210 2016-03-18 20:19:13 -05:00
Jordan Wright cfba48a824 Added the ability to convert links on email import to point to the landing page. Fixes #201 2016-03-10 20:35:33 -06:00
Jordan Wright c979dbd58d Added support for X-Forwarded-For. Fixes #203 2016-03-10 18:54:30 -06:00
Jordan Wright 219d546a8d Ignoring SSL cert issues when importing a site. Fixes #200 2016-03-09 18:55:39 -06:00
Jordan Wright d43a888b26 Updating gorm constructs to support gorm v1.0 released yesterday. 2016-03-08 22:37:55 -06:00
Jordan Wright 6b61b24f68 Merge branch 'master' into 78-store-smtp-settings 
# Conflicts:
#	models/models_test.go
#	static/js/app/landing_pages.js
 2016-02-28 22:08:39 -06:00
William Woodson 7ca63f55be gofmt, because that is a thing 2016-02-27 08:37:02 -06:00
William Woodson 80fc04924d Added handling to /util/send_test_email to use default on empty template and accept a validated SMTP object from send test email workflow on sending profiles page 2016-02-27 08:32:10 -06:00
Jordan Wright b0dd96d088 Merge branch 'master' into 124-capture-passwords 2016-02-25 20:02:15 -06:00
Jordan Wright 44fa8127fc Adding the ability to capture submitted data via the UI. Fixes #124 2016-02-25 19:58:49 -06:00
Jordan Wright 553ead7d68 Moved fmt prints to Logger prints 2016-02-21 22:18:34 -06:00
Jordan Wright 7bf2c00356 gofmt'ing 2016-02-21 21:09:14 -06:00
William Woodson 9818410fcf Updated campaign creation and send_test_email to use settings from sending profile 2016-02-21 12:05:40 -06:00
William Woodson dde2312183 Updated smtp model and api to support managing SMTP objects as independent entities 2016-02-20 21:08:52 -06:00
William Woodson 12823468d3 Fixed page titles for several routes 2016-02-20 17:46:22 -06:00
William Woodson 0e1fe9eb0e Created API endpoint smtp for storing SMTP server config 2016-02-20 17:24:08 -06:00
William Woodson 828e42bc3b Created routes, template, js for sending_profiles page 2016-02-20 17:24:08 -06:00
Jordan Wright 3d9e447992 Removing support for empty passwords - fixes #149 2016-02-13 16:37:12 -06:00
Jordan Wright fdfeafa1ec Restricted registration to only logged in users. Fixes #137 2016-02-09 22:19:06 -06:00
Jordan Wright 62ffbcceda Added check on email open to avoid overwriting the click/data submit events. Fixes #119 2016-02-08 19:50:21 -06:00
Jordan Wright 94e43fe557 Initial commit - adding db migration as well as the logic to add the payload 2016-01-31 19:50:41 -06:00
Jordan Wright 32aaa15da7 Added documentation for multiple endpoints. Fixes #54 2016-01-24 20:47:16 -06:00
Jordan Wright e4d6e68147 Added ability to send a test email before launching a campaign 2016-01-24 20:03:53 -06:00
Jordan Wright 379edf73a3 Adding first round of database migrations using goose 2016-01-18 21:13:32 -06:00
William Woodson 44852546e0 Added UseTLS config option for both Admin and Phish servers 2016-01-17 10:45:13 -06:00
Jordan Wright 1d8ac6f9f3 Added better logging for campaign retrieval 2016-01-16 23:51:01 -06:00
William Woodson 3a0fa4f93f Update bcrypt dependency and code moved to gophish group 2016-01-10 11:04:03 -06:00
Jordan Wright c6cd018536 Added IP, Lat and Lon to models.Result. Closes #47 
Added basic mapping on campaign results. Closes #51
 2016-01-04 00:04:10 -06:00
Jordan Wright 594aef49a5 First draft of moving api docs to aglio - WIP 2015-12-25 22:09:32 -06:00
Jordan Wright 014efb449e Moved <base> tag to start of <head> tag. Fixes #42 2015-10-23 18:16:54 -05:00
Jordan Wright 01c3da611b PhishHandler now loads landing page content. Fixes #37 
Now supports autocomplete for modal typeahead. Fixes #40
Users can now specify landing pages in campaigns. Fixes #39
Implemented "Email Opened" status. Fixes #38
 2015-10-22 22:29:10 -05:00
Jordan Wright 47619a8426 Fixing CSRF Exceptions 2015-10-03 15:55:06 -05:00
Jordan Wright 906c4e8a93 Adjusted CSRF whitelisted paths so remove dependency on / in path. 
Fixes #31
 2015-10-03 15:16:11 -05:00
Jordan Wright b45a72618d Adding the ability to import emails - WIP 2015-09-14 23:42:29 -05:00
Jordan Wright ba11f6428c Can now add/delete pages 
Fixed test for importing a site - Now actually performs the right test.
 2015-08-25 21:03:12 -05:00
Jordan Wright 54fe866d71 Added /api/import/site functionality 2015-08-23 20:42:47 -05:00
unknown fc2aa71e91 Fixed settings - can now reset password, api key. 2015-08-15 16:03:39 -05:00
unknown eacb4ddfd4 Fixed /users endpoint to now have the following functionality: 
- Edit
- Delete
Also added group validation on PUT /api/groups/:id
 2015-08-05 00:23:05 -05:00
unknown 0e496bdf73 Migrated settings (at least it loads). 
Working on making the template syntax consistent across all the files, cleaning them up, etc.
 2015-06-21 16:10:47 -05:00
unknown e1eadc3892 Re-organizing files to use Jquery instead of Angular 2015-06-15 16:49:16 -05:00
unknown 7af35237a7 Working on tracking and email handling - want to make it as smooth as possible 
Removed flash that shouldn't have been on the campaigns page
Added small time delay to prevent connection overload - might remove it later, but it'll be tricky
 2015-06-12 23:12:43 -05:00
unknown 03b25f5fee Cleaning up a bit of controllers.js #12 
Working on site clone and email import
 2015-06-12 18:22:17 -05:00
unknown 66dbe2e799 Cleaned up error messages - *all* errors in JSON format 
Cleaned up flashes - fixes #13
Added specified errors - more to come soon
Added Campaign validation
Added Group validation
Cleaned up the way angular errors are handled. Will double check, but for the most part fixes #11
Results are now shown on the webui with most recent shown first
Added comments, additional cleanup, etc.
 2015-02-21 00:11:22 -06:00
unknown 73e395cfe0 - Cleanup up flash messages for templates. Will fix for everything else later. 
- Also fixed #5 with the help from CKEditor devs (duplicate ticket found)
 2015-02-17 20:49:09 -06:00
unknown 759f86447d Working on importing emails from source (still doesn't work yet!) 2015-02-15 21:53:30 -06:00
unknown 4211abe78b Previewing Landing pages in a different window seems to work now. 
Working on getting some site clone functionality working.
 2015-02-08 18:37:07 -06:00
unknown f21d40d77a Registration works again. 
Additional cleanup, removing unused code
 2015-02-07 17:30:22 -06:00
unknown 669d96d279 More work implementing pages. 
More cleanup - changing *all* API errors to be returned via JSON
Fixed bug where /api/pages/ was not csrf exempt
Changed db column/table names to be more user friendly in the case of acronyms (Id, SMTP, etc.)
 2015-02-07 14:31:41 -06:00
unknown c8be0ddb74 Still working on pages integration. Added skeleton for page HTML previewing in a new browser. 
Additional cleanup, documentation
Changed return values for /api/templates and /api/pages to return empty array [] if no results (like /api/campaigns was already doing)
 2015-02-07 10:41:53 -06:00
unknown c318424ac0 Starting to integrate landing page functionality (still not working). 
Also did some minor cleanup.
 2015-02-06 20:24:10 -06:00
unknown d567153d2a Time to get back to work - starting with some simple comment fixes. 2015-01-28 17:56:56 -06:00
Jordan 33b9ec2196 Bug fixes on PUT /api/template 
Hotfix for buffer issue in worker.go.. going to find out the root cause and fix it properly
 2014-08-07 05:48:52 -05:00
Jordan 86dca67a5a Finished implementing PUT /templates/:id 
Now deleting events on campaign deletion
Added some minor UI fixes and changes
 2014-07-23 21:04:38 -05:00
Jordan cc2ae713e5 Made models more consistent 
Added UserId field to result (for use in looking up campaign when result is clicked)
 2014-07-06 21:34:02 -05:00
Jordan ad3e69e6ae Fixed PUT /api/template/:id - Works now! 2014-07-06 13:06:18 -05:00
Jordan 02c7c4b5b1 Moved models.Result into its own file 
Added initial dashboard template (some updates and changes will be needed)
Added some documentation
 2014-07-01 20:32:34 -05:00
Jordan 0f603e6501 Added http handler for phishing endpoint - Will add content soon 
Updated config.go to reflect the new changes
 2014-06-29 16:44:16 -05:00
Jordan efec86ae56 Added util package for handling misc. tasks 
Added basic (*not finished*) functionality for handling bulk user insert
 2014-06-21 21:06:16 -05:00
Jordan 01901c9008 Decoupling campaign.go a bit 
Added #!/campaigns route so that #!/ can be used for a dashboard in the future
 2014-06-21 12:19:49 -05:00
Jordan af44dbb07c Changed writeJSON to JSONResponse and added a status code argument 2014-06-02 20:56:30 -05:00
Jordan 96cefc4931 Cleaned up possible (very unlikely?) permission issue 
Better logging in controllers module
DRY changes to API
Added Data attribute to models.Response struct
Added GetTemplateByName (will be used in filling out campaign)
Changed modal to be 800px on large screens for better previews
 2014-06-01 23:38:21 -05:00
Jordan 31aa5614a0 Moving JSON Responses to a standard Response object 
Added cursor:pointer styling to dropdown menus
 2014-06-01 22:30:23 -05:00
Jordan 3dd22e8d7c Moved JSON encoding to helper function because DRY. 2014-05-29 11:57:33 -05:00
Jordan 7b39096e3f Added async settings update 
Removed /settings GET endpoint (not needed, since AngularJS in use)
TODO: Move the anon struct in use to a model as appropriate
 2014-05-28 23:29:41 -05:00
Jordan 25cbaf92ce Changed templates to have a 1-1 relationship with user (will implement sharing differently later) 
Working on implementing /api/template/:id methods
Removed API_Campaigns_Id_Launch method (will just POST using template from angularjs scope later)
 2014-05-28 18:48:30 -05:00
Jordan 9b216c5466 Major design change - more dashboard-ish. 
Working on more angularjs + gophish abstraction. Gophish for backend, AngularJS for the frontend
Moved templates to partials for angular
Using FlatUI color scheme
 2014-05-26 20:29:12 -05:00
Jordan 8c1bb58fe2 Added validation for campaigns... I'm considering making everything branch off of a Model Interface with Get(), Put(), Post(), and Delete(), etc. Might make things cleaner. 
Added better error messages on the UI side
 2014-03-28 00:21:42 -05:00
Jordan 7c50f4dbb4 Initial commit of worker.go (Still work to do) 
Moved constants to models.go
Changed Campaign.Template to be an actual template (will need to adjust all the methods to handle it)
Added UpdateCampaignStatus function to update a campaign status
 2014-03-27 23:31:51 -05:00
Jordan f0e7ac46c8 Integrated gorm with templates - Gorm integration complete 
Updated groups to belong to one user. I may make a Team and TeamGroups, and TeamUsers m2m relationships later.
Added another test - more on the way soon.
 2014-03-27 13:19:57 -05:00
Jordan 5740ee3273 Fixed bug in POSTing campaign 
Removed gorp initialization code from models.go
 2014-03-26 14:50:16 -05:00
Jordan e137126a90 Working on gorm integration 
TODO:
[ ] Finish up groups (many-to-many with group_targets)
[ ] Convert Template models
 2014-03-25 23:53:51 -05:00
Jordan 584d7dbc23 Major refactoring - modularized models into separate files. Removed db package (moved to models) 
I will be looking to migrate to gorm (instead of gorp) soon!
 2014-03-24 22:31:33 -05:00
Jordan 4dd9a5cc53 Checking for no targets on PUT /groups/:id 2014-03-24 19:12:04 -05:00
Jordan b3e3dd8ff1 Added "templates" Template, View, and Route 
Added "unsafe" filter per stackoverflow
Updated side nav to include links to "/templates"
 2014-03-18 15:20:34 -05:00
Jordan ef371f68bd Set StrictSlash on API router to automatically redirect to correct url if slash is not provided 2014-03-18 13:58:08 -05:00