An anti-phishing script
The usage of this script in a criminal manner is not endorsed by me, and you hold all responsibility for your actions.
Never use this script on a website which you do not own.
antiphish.py takes four command-line parameters:
urlThe url is a positional argument that should be the target url/domain.
-p
--passwordThe password is the password field of the request, and will be fed with random strings that look roughly like this gQbrRih6q#dK-dU=CHMN.
-u
--usernameThe username is the username field of the request, and will be fed with random strings that look roughly like this [email protected].
The username field draws from names.json, which contains over 8000 names.
-dl [True/False]
--domainlist [True/False]The domainlist is a switch that chooses between two domainlists, domains.json (Containing the seven most popular domains), and alldomains.json (Containing every domain I could find).
True = all domains, False = common domains
Example usage:
py antiphish.py website.com/login.php --username usernamefield --password passwordfield --domainlist TrueCopyright 2019 Kixiron
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.