It is time for the next release of King Phisher! Continuing down the path of making it easier to set your Web Server URL, the campaign editor now features an interactive URL builder component. This allows users to easily select the scheme, hostname and landing page as suggested by the server making it easier to select a proper URL.
In addition, King Phisher now integrats with Let’s Encrypt. When configured, users can now issue SSL certificates directly through the client using the aforementioned URL builder. Now making a legitimate-looking website for your phishing campaigns with the “Green Lock” next to the URL in a web browser takes just a click.
To make authentication easier with SSH keyed authentication, the client will now try all keys being advertised in the ssh-agent. Users no longer need to set their preferred SSH key in their configuration unless they want to be explicit.
Finally, to reduce spam scores and help prevent message from meeting their doom, the Message-ID MIME header is now automatically added. This has increased the chance of phishing messages reaching their targets!
Other changes with this release:
- Deleted the
Pipfile.lockfile from the repository to prevent hash issues between Python interpreter versions - Add
--threetopipenv installandpipenv --updatestartup procedures to force use of Python 3 - Added server support for installing missing plugin requirements during initialization
- Added asynchronous RPC methods to the client to prevent UI locking
- Added GraphQL and database schema documentation
Remember to update your instance of King Phisher to the lastest release. As always, happy phishing.
