-
Notifications
You must be signed in to change notification settings - Fork 548
Frequently Asked Questions
If a 404 / "Page Not Found" is being shown when a landing page is being viewed
or tested this is most likely due to the server's require_id
setting. The
require_id
setting is enabled by default and prevents users from
requesting landing pages without a valid id associated with a non-expired
campaign.
This issue can be verified by checking the server log for the message "WARNING
denying request due to lack of a valid id". Users have three options for testing
landing pages when the require_id
setting is enabled.
-
Recommended: Users can send themselves a test email utilizing the jinja
HTML reference of
<a href="{{ url.webserver }}">click me</a>
to provide yourself and targets an ID to access the page.
- Afterwards the visit can be deleted from the campaign from the client
- Users can check that the page is being served using the "Verify URL" button in the client
- Users can disable the
require_id
setting on the server and restart it
There are no default credentials for King Phisher. The credentials that the client UI prompts for are the credentials to an account on the King Phisher server. This account must have the necessary privileges to use SSH and forward TCP ports. For example, if the King Phisher server is running on Kali, the default credentials would be the same as those of Kali (root / toor). For more information see, the page on Server Authentication.
Both the client and the server will log output to the console when started from the command line with the "-L DEBUG" flag. When starting the server, it is also recommended to specify the "-f" flag to keep the process in the foreground.
In order to send messages from GMail, it is necessary to use the GMail SMTP
servers. While sending messages through GMail's SMTP servers, it's common to
receive a Failed to send message
error. This can be due to malicious content
being detected in the message. Additionally the Source Email
settings must
correspond to the SMTP Username
in order for the message to be accepted.
The following settings need to be configured to as shown.
Setting Name | Setting Value |
---|---|
SMTP Server | smtp.gmail.com:465 |
SMTP Username | USERNAME@gmail.com |
Connect With SSL | On |
Tunnel Over SSH | Off |