Lintlha tse Ncha le Lintlafatso tse tsoang ho GoPhish bakeng sa Koetliso ea Tlhokomeliso ea Tšireletso
Selelekela
GoPhish ke simulator e bonolo ho e sebelisa ebile e theko e tlase eo u ka e kenyang lenaneong la hau la koetliso ea phishing. Ho fapana le li-simulator tse ling tse tsebahalang tsa phishing, GoPhish e lula e ntlafatsoa ka likarolo tse ncha. Sehloohong sena, re tla sheba tse ling tsa likarolo tse ncha tse hlokomelehang ho tloha ka mofuta oa 0.9.0.
Litaba Tse Ncha
- Tšimoloho e Tšeptjoang e Ekelitsoeng ho CSRF Handler GoPhish joale e lumella ho fetola trusted_origins faeleng ea config.json. Sena se o lumella ho kenya liaterese tseo u li lebelletseng ho likhokahano tse kenang. Sena se na le thuso ha sekala sa mojaro o holimo se sebetsana le pheliso ea TLS ho fapana le ts'ebeliso ka boyona.
- E hlahisitse tracking ea sehokelo ka ho kenyelletsa mefuta e fapaneng ea GoPhish mefuteng e fapaneng ea lifaele tse ka hokeloang ho li-imeile. Ka mohlala, hona joale hoa khonahala ho kenyelletsa "Hello {{.FirstName}}, ka kopo, tobetsa mona: {{.URL}}" ho tokomane ea Word kapa eketsa lipikselse tsa ho latella litokomane. Sena se tla tsebisa ha basebelisi ba bula lifaele tse khomaretsoeng kapa ba nolofalletsa li-macros litokomaneng tsa Office. GoPhish e tšehetsa lisebelisoa tse latelang tsa lifaele: docx, docm, pptx, xlsx, xlsm, txt, html, le ics.
- E kentse bokhoni ba ho hlakisa motho ea rometseng enfelopo ka litempele. Haeba e tlohetsoe e se na letho, e tla oela hape ho SMTP-Ho tsoa ho Litlhophiso tsa Moromeli. Sena se ka sebelisoa ho fetisa licheke tsa SPF empa o ntse o romella lengolo-tsoibila la spoofing.
- E kentse leano la mantlha la li-password bakeng sa batsamaisi le ho tlosa password ea kamehla "gophish". Sebakeng seo, phasewete ea pele e se e hlahisoa ka mokhoa o sa reroang 'me e bonts'oa ho terminal ha e qala Gophish ka lekhetlo la pele. Haeba ho hlokahala, senotlolo sa pele le senotlolo sa API li ka hlakoloa ho sebelisoa mefuta e fapaneng ea tikoloho.
- Tšehetso e ekelitsoeng bakeng sa li-webhooks. Ka ho hlophisa webhook, Gophish joale e ka romela likopo tsa HTTP sebakeng se laoloang. Likopo tsena li kenyelletsa sehlopha sa JSON sa ketsahalo e nyallanang, e leng eona JSON eo ka tloaelo u tla e fumana ka API. Ntlafatso ena e fana ka lintlafatso tsa nako ea nnete mabapi le mesebetsi ea phutuho. Sena se u fa lintlafatso tsa nako ea 'nete ho masolo a hau a tsoelang pele.
- E hlahisitse bokhoni ba ho lokisa lintlha tsa IMAP ho Gophish, e lumellang ho lata mangolo-tsoibila a lets'olo le ho a tšoaea joalo ka ha ho tlalehiloe.
fihlela qeto e
Ka likarolo tsena tse ncha, joale u ka sebelisa GoPhish e sireletsehileng le e sebetsang haholoanyane. Ha lintlafatso tse ling li tla nakong e tlang, GoPhish e tla lula e le sesebelisoa sa bohlokoa bakeng sa mekhatlo e batlang ho matlafatsa mananeo a bona a koetliso ea bosholu.
