Initial Access with Gophish
By Matt Glass
Course info



Course info



Description
Are you looking for a tool that can quickly and easily set up phishing campaigns and host its own landing pages?
In this course, Initial Access with Gophish, you’ll cover how to utilize Gophish to complete Initial Access in a red team environment.
First, you’ll see how to install Gophish and navigate through its features.
Next, you’ll explore social engineering techniques to execute a malicious link phishing campaign and capture credentials.
Finally, you’ll discover how to simulate a malicious attachment attack to gain access to your target.
When you’re finished with this course, you’ll have the skills and knowledge to execute this technique - T1566: Spearphishing using Gophish.
Course FAQ
Gophish is an open source phishing tool written in the Go programming language for use by businesses and penetration testers to test for phishing awareness.
Gophish is used for sending phishing emails with malicious attachments or links to landing pages that can capture entered credentials.
We will cover one primary tactic with two sub-tactics in this course. The primary tactic is phishing, which has two sub-topics we'll cover, spearphishing attachment and spearphishing link.
The current version of Gophish can be downloaded from either their website, getgophish.com, or their GitHub page.
Section Introduction Transcripts
Course Overview
Welcome to Pluralsight and this Red Team Tools course featuring Gophish, the open source phishing tool developed and maintained by Jordan Wright. Gophish is a tool that penetration testers and ethical hackers can use to conduct phishing campaigns to gain initial access through malicious links or attachments. Gophish is used for sending phishing emails with malicious attachments or links to landing pages that can capture entered credentials. Gophish is a tool written in the Go programming language, leading to its name, Gophish. The functions in Gophish were designed for use by businesses and penetration testers to test for phishing awareness within an organization. Come join me as we use Gophish to gain access to our target using phishing emails with malicious links and attachments.