cristiancmoises
/
gophish
mirror of https://github.com/gophish/gophish
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Page: FAQ
Pages
API Documentation Changing User Settings Creating Campaigns Creating Groups Creating Templates Creating the Template FAQ Getting Started Groups Home Importing Groups Installation Introducing Morning Catch Corporation Template Reference Templates What is Gophish?
1 FAQ
Jordan Wright edited this page 2016-10-21 18:10:55 -05:00
Table of Contents

Here is a list of the frequently asked questions we see come up in Issues frequently:

Why isn't email tracking working?

Gophish implements email tracking by adding a link to a transparent pixel at the bottom of the email. We then wait for the user's mail client to request the image, telling the Gophish server that the email was opened.

This is the common way to implement email tracking used by marketing.

The problem with this is that many email clients by default block the loading of external content to prevent tracking. Unfortunately, there is nothing Gophish can do to prevent this, as it is implemented by the mail client.

Why aren't credentials being captured?

Gophish handles capturing credentials in a simple way. When the landing page is submitted, we check to see what kind of data you want captured.

If you want to capture credentials, we change the action attribute in the <form>'s to point to "", causing the form to be submitted to Gophish.

If you don't want to capture passwords, we modify the <form> element so that input's with type=password aren't submitted.

The problem is that it's not always this easy. Some pages submit forms via Javascript instead of form elements. It would be nearly impossible for Gophish to easily handle all of these edge cases so these sites may need manual modification.

Why wasn't [URL] imported correctly?

Gophish's import mechanism is incredibly basic. We grab the HTML from the URL specified and add a <base> tag to the HTML pointing to the original URL. This allows relative static resources to be loaded from the URL instead of having to download and host all of those on Gophish.

It's possible that this mechanism doesn't work for some websites. If this is the case, manual modification to the HTML may be needed.

Contents

Home
License
What is Gophish?
Installing Gophish
Getting Started
Documentation
Building Your First Campaign
Template Variables Reference
Advanced Usage & API Documentation
FAQ
Some icons made by Freepik from www.flaticon.com is licensed by CC BY 3.0