自动化红队钓鱼测试

v20260317

performing-red-team-phishing-with-gophish

通过 Python gophish 库自动化 GoPhish 钓鱼模拟，快速搭建邮件模板、SMTP、目标分组与登录页，启动活动并分析打开、点击与凭证提交数据，提升安全意识。

GoPhish 钓鱼测试红队安全意识自动化 Python 活动监控邮件安全

获取技能

74 次下载

概览

Instructions

Install dependencies: pip install gophish requests
Deploy GoPhish server and obtain an API key from Settings.
Use the Python gophish library to automate campaign setup:
- Create email templates with HTML body and tracking
- Configure SMTP sending profiles
- Import target groups from CSV
- Create landing pages for credential capture
- Launch and monitor campaigns
Analyze campaign results: opens, clicks, submitted data, reported.

# For authorized penetration testing and lab environments only
python scripts/agent.py --gophish-url https://localhost:3333 --api-key <key> --campaign-name "Q1 Awareness" --output phishing_report.json

Examples

Create Campaign via API

from gophish import Gophish
from gophish.models import Campaign, Template, Group, SMTP, Page
api = Gophish("api_key", host="https://localhost:3333", verify=False)
campaign = Campaign(name="Q1 Test", groups=[Group(name="Sales Team")],
    template=Template(name="IT Password Reset"), smtp=SMTP(name="Internal SMTP"),
    page=Page(name="Credential Page"))
api.campaigns.post(campaign)

信息

Category 未分类

Name performing-red-team-phishing-with-gophish

版本 v20260317

大小 8.39KB

Source mukul975/Anthropic-Cybersecurity-Skills

更新时间 2026-03-18