After having tons of trouble with some other tools, I decided to make a simple script to send phishing emails during engagements.  Since I am very comfortable with PowerShell, I decided to use that.  From this simple script, came something I think is pretty cool. (Though that might be the tiredness talking...)

                                     |     <'(((><            
             PowerPhish       J  >'(((><              

            By:  Kirk Hayes (l0gan - @kirkphayes)      

To use PowerPhish, just modify the emailTargets.txt, emailBody.txt, and some variables in the PowerPhish.ps1 script.

     Use the format:  email address,first name, last name
     One address per line.
     (i.e., jdoe@example.com,John,Doe)

     Create an email in HTML format.  Add in links, or other fun things.
     Use "[firstName]" and "[lastName]" in the emailBody to personalize the message.


$emailSmtpServer = "smtp.gmail.com"
$emailSmtpServerPort = "587"
$SourceRCPT = "HelpDesk@example.com"
$DestFile = "emailTargets.txt"
$BodyFile = "emailBody.txt"
$SubjectLine = "Password Expiration Notice"
$Pass  = "$up3r$3cr3tP@ss"

Set emailSmtpServer to the SMTP Server you wish to relay through
Set emailSmtpServerPort to the correct port for your relay
Set SourceRCPT to the email address to send from (this is also used for authentication to the mail relay)
Set DestFile to your email targets CSV file, or leave as default and modify the emailTargets.txt
Set BodyFile to the email body text file, or modify the emailBody.txt file
Set SubjectLine to the email Subject
Set Pass to the password for the SourceRCPT account (used for authentication to the mail relay.)

This was created in a short time, on not enough sleep (or coffee), and with me on vacation mode, so there may be bugs, so use at your own risk.  If you have suggestions for features let me know!

PowerPhish on Github:  https://github.com/l0gan/PowerPhish

Popular Posts