SimplyTemplate
Phishing Template Generation Made Easy. The goal of this project was to hopefully speed up Phishing Template Gen as well as an easy way to ensure accuracy of your templates. Currently my standard Method of delivering emails is the Spear Phish in Cobalt strike so you will see proper settings for that by default.
Current Platforms Supported:
- Kali Linux 2.0
- Kali Linux 1.0
- Debian (deb8u3)
Work Conducted by:
- Alexander Rymdeko-Harvey [Twitter] @Killswitch-GUI -- [Web] CyberSydicates.com
Major Call Outs!:
- Chris Ross [@xorrior]
- Steve Borosh [@rvrsh3ll] -- [web] www.rvrsh3ll.net
A few small benefits:
- Easy for you to write modules (All you need is 1 required Class option and you're up and running)
- Simple integration of Email Templates
- Also the ability to change major settings fast without diving into the code (Coming)
Understanding Module Types
All templates will provide you with a small meta tag. This tag will help you quickly identify the capabilities of the module, also what the "content" supports.
Sophistication Levels:
- High == Requires proper OSINT / SE to build and effectively deploy the template. These are generally internal based templates with specific themes.
- Medium == Requires a decent amount of modifications or settings, and are more general of a template external based template.
- Low == Requires little to no modifications of the template and are generally not effective.
Core Options:
- Text == Text based option or output.
- Html == Rich Html Supported for output (generally multipart Email Html/Text).
- Link == Template supports a major link for stats or potential web download of document/Drive-by.
- Attachment == Can support text that tells users to open or use the supplied attachment.
Email Rendering:
- Html == This was used by some to view the HTML markup but CSS does not render correctly (Basic Templates)
- eml == Files can be outputed via .EML to open them directly in Icedove or Outlook
- mht == MHTML is the Mail Html Markup used and can directly rendered in Word/IE or Iceweasel via plugin
Tips, Tricks, Notes
The following is a collection trips and tricks to get your email in!
Get Started
Please RUN the simple Setup Bash script!!!
root@kali:~/Desktop/SimplyTemplate# sh Setup.sh
or
root@kali:~/Desktop/Simplytemplate# ./Setup.shStandard Commands
[>] help
Availiable Commands:
-----------------------------------------
[use] Select a template for use
[list] List loaded Templates
[info] Display metadata about a module
[search] Search by Core Options / Sophistication
[update] Update SimplyTemplate from Github
[help] Display this menu
[exit] Exit SimplyTemplate
Availiable Template Commands:
-----------------------------------------
[set] Set a option for the Template
[info] Info about loaded Templates
[gen] Generate Template
[view] View Sample Template
[render] Render Html of Email
[back] Go back to main Menu
[exit] Exit SimplyTemplate
[>]
Standard Startup
============================================================
Current: v0.1 | SimplyTemplate | [Web]: CyberSyndicates.com
============================================================
[Twitter]: @real_slacker007 | [Twitter]: @Killswitch_gui
============================================================
Main Selection Menu
6 Email Templates Loaded
Commands:
[use] Select a template for use
[list] List loaded Templates
[info] Display metadata about a module
[search] Search by Core Options / Sophistication
[update] Update SimplyTemplate from Github
[help] Display this menu
[exit] Exit SimplyTemplate
[>]
List Modules
============================================================
Current: v0.1 | SimplyTemplate | [Web]: CyberSyndicates.com
============================================================
[Twitter]: @real_slacker007 | [Twitter]: @Killswitch_gui
============================================================
[*] Available Modules are: Core Options: Sophistication:
------------------------- ------------- ---------------
1) Modules/Internal/Leadership/AppleEncryptionFBI.py [Text, Html, Link] [Low]
2) Modules/Internal/Leadership/CFOBonusStructure.py [Html, Attachment] [High]
3) Modules/Internal/IT/NoticeofMonitoring.py [Html, Link] [Low]
4) Modules/Internal/IT/BlockedWebsite.py [Html, Link] [Medium]
5) Modules/Internal/IT/WebsiteDevelopmentTest.py [Html, Link] [Low]
6) Modules/Internal/IT/PhishingAlert.py [Html, Link] [Low]
7) Modules/Internal/IT/Office365Migration.py [Text, Html, Link] [High]
8) Modules/Internal/Facilities/BuildingInspection.py [Html, Link] [Low]
9) Modules/Internal/Agency/GovBudgetReduction.py [Html, Link] [Medium]
10) Modules/Internal/Hr/TelecommuteOpportunities.py [Text, Html, Link] [High]
11) Modules/Internal/Hr/SocialMediaPolicy.py [Text, Html, Attachment] [Medium]
12) Modules/Internal/Hr/PayScaleBonusGuideline.py [Text, Html, Link] [Medium]
13) Modules/Internal/Hr/HRTaxCorectionW2.py [Text, Html, Link] [Medium]
14) Modules/Internal/Hr/WellnessProgram.py [Html, Link] [Low]
15) Modules/Internal/Hr/HRNewsArticle.py [Text, Html, Link] [Medium]
16) Modules/Internal/Marketing/CyberNews.py [Text, Html, Link] [High]
17) Modules/External/Social/LinkedinGroup.py [Text, Html, Link] [Medium]
18) Modules/External/News/BasicFoxNews.py [Text, Link] [Low]
19) Modules/External/Agency/OPMSalaryGuidelines.py [Html, Link] [Medium]
20) Modules/External/Agency/IRS-CorrectedW2.py [Text, Html, Link] [Low]
Use a module
============================================================
Current: v0.1 | SimplyTemplate | [Web]: CyberSyndicates.com
============================================================
[Twitter]: @real_slacker007 | [Twitter]: @Killswitch_gui
============================================================
Template Loaded: CFO Policy update to bonus.
Template Required Options:
Setting Value Set Description of Setting
------- --------- ----------------------
FromCFOName Alex Jason The Target CFO Full Name
FromEmail [email protected] From Email
FromRealEmail [email protected] The Target CFO real email
FromTitle Chief Financial Officer Set the OSINT name gathered title
TargetAddress 123 Street Las Vegas, NV, 12345 Set the Target Company Addr
TargetCompany Cyber Power Set the Target Company Full Name
TargetLogo http://Target.com/logo.png Set the Target Logo
TargetPhone 1-800-CD-FOUR Set the Target Toll Free line
TargetWebLink Target.com Set the real target web link
Availiable Template Commands:
Command Description
------- -----------
[set] Set a option for the Template
[info] Info about loaded Templates
[gen] Generate Template
[view] View Sample Template
[render] Render Html of Email
[back] Go back to main Menu
[exit] Exit SimplyTemplate
[>]
Simply Use Set and Gen
============================================================
Current: v0.1 | SimplyTemplate | [Web]: CyberSyndicates.com
============================================================
[Twitter]: @real_slacker007 | [Twitter]: @Killswitch_gui
============================================================
Template Information:
Name: Cyber News Letter
Author Killswitch-GUI
Type: HTML/Text
Sophistication: Medium
SampleImage: Modules/Sample/CyberNewsLetter.png
Info: Using a custom news letter is common by HR and
other depts. By setting up a
proper and common HTML email you can easily
get clicks and less likely to be reported.
Template Required Options:
Setting Value Set Description of Setting
------- --------- ----------------------
FromFirstName Jim Contacts First Name
FromFullName Jim Bob Contacts Full Name
FromOrg MOM, LLC Contacts Company
FromProfileUrl http://k.com Linkedin Full Profile URL
FromTitle CEO, ATD Contacts Full Title
GroupName Cyber Cyber Cyber Requested Group to Join
GroupUrl %URL% Custom GroupURL or CS URL
ProfilePic http://tinyurl.com/oewvyo7 Custom GroupURL or CS URL
[>] set FromOrg James Brown, LLC
[>] gen