https://edermi.github.io/tags/gophish/Recent content in Gophish on edermi's BlogHugoen-usMon, 02 Mar 2026 21:55:17 +0100https://edermi.github.io/post/2021/modding_gophish/Mon, 24 May 2021 00:00:00 +0000https://edermi.github.io/post/2021/modding_gophish/<p><em><strong>TL;DR</strong></em>: <em>I&rsquo;ll shine a light on Gophish and how to modify it to change behavior or introduce/remove functionality. At the end of this post, you&rsquo;ll know how to host custom 404 pages in Gophish and how to abuse HTTP basic auth instead of login forms embedded on the landing page to obtain juicy creds.</em></p> <p>A few days ago I tweeted one of my modifications to Gophish:</p> <blockquote class="twitter-tweet"><p lang="en" dir="ltr">After low click rates in my last phishing campaign due to staff being extremely well trained for this kind of attack, I modded gophish to show an HTTP Basic auth request instead of a phishing site. Once data is entered, users are redirected to a legit site: <a href="https://t.co/LncsgT8OSE">pic.twitter.com/LncsgT8OSE</a></p>