It's a pre-built docker environment which allows you to quickly, easily and safely spin up phishing kits for analysis. Out of the box you can browse, "mitm" web traffic, log mail calls to flat files and debug PHP code remotely.
git clone https://github.com/zerofox-oss/phishpond.git
cd ./phishpond/
- Configure any db connection strings within
docker-compose.yml
docker-compose up -d
- Browse to
http://localhost:5800
for the virtual browser - Browse to
http://localhost:8080
for mitmproxy - Within the virtual browser navigate to
http://phishpond.local
(First time setup)
- Open preferences within the virtual browser
- Search
cert
- Click
view certificates
- Click the authorities tab
- Click Import
- Import
/config/certs/mitmproxy-ca-cert.pem
- Tick
Trust this CA to identify websites
- OK
You will need to repeat these steps every time you remove the browser-volume