ReelPhish simplifies the real-time phishing technique. The primary component of the phishing tool is designed to be run on the attacker’s system, a Python script that listens for data from the attacker’s phishing site and drives a locally installed web browser. The secondary component of ReelPhish resides on the phishing site itself. Code embedded in the phishing site sends data, such as the captured username and password, to the phishing tool running on the attacker’s machine. The phishing tool then launches a browser and authenticates to the legitimate website.
|Platform:||Chrome, Internet Explorer, Firefox, Safari, Python|