Week 32 - O365 BITB
After building out a two-part Google Browser-in-the-Browser Phishing page, I felt like it was time for an Office365 one: https://github.com/jakedmurphy1/O365-BITB I’ve found that using modern-looking two-part login pages combined with mrd0x’s BITB allows for extremely successful phishing campaigns. All you need to run this is a few simple commands and a web server that supports PHP. I timed myself, and was able to get it up and running in just under 30 seconds! Once a victim submits their password, they are redirected to a fake O365 error page.
Last updated