Dejinta GoPhish Goobta Suuqa AWS: Hagaha Tallaabo-tallaabo

Hordhac

Hailbytes waxay bixisaa qalab xiiso leh oo loo yaqaan GoPhish si uu uga caawiyo ganacsiyada tijaabinta nidaamyada amniga iimaylka. GoPhish waa aalad qiimaynta amniga loogu talagalay phishing olole ay ururadu u isticmaali karaan inay ku tababaraan shaqaalahooda si ay u aqoonsadaan ugana hortagaan weerarradan oo kale. Boostada baloogga ayaa kugu hagi doonta sida loo helo GoPhish Suuqa Suuqa AWS, rukunso bixinta, bilow tusaale, oo ku xidho console-ka maamulka si aad u bilowdo adeegsiga aaladdan ugu fiican.

Sida Loo Helo oo Looga Rukumo GoPhish Goobta Suuqa AWS

Talaabada ugu horeysa ee dejinta GoPhish waa in laga helo Goobta Suuqa AWS. Si aad sidaas u samayso, raac talaabooyinkan:

Tag Suuqa Suuqa AWS oo ka raadi "GoPhish" meesha raadinta.
Ka raadi liiska Hailbytes, kaas oo u muuqda natiijada koowaad.
Guji badhanka "Continue to Subscribe" si aad u aqbasho dalabka. Waxaad dooran kartaa inaad ku biirto saacadii $0.50 saacadiiba ama aad gasho qandaraas sanadle ah oo aad badbaadiso 18%.

Marka si guul leh loogu biiro software-ka, waxaad ka habeyn kartaa tab qaabeynta. Waxaad uga tagi kartaa inta badan goobaha sida ay yihiin, ama waxaad u bedeli kartaa gobolka xarun xogeed oo kuugu dhow ama meesha aad ku socodsiin doonto sawiradaada.

Sida loo bilaabo Tusaalahaaga GoPhish

Ka dib marka la dhammeeyo nidaamka isdiiwaangelinta iyo isku xidhka, waa waqtigii aad bilaabi lahayd tusaalahaaga GoPhish adiga oo raacaya tillaabooyinkan:

Guji badhanka ka soo bilawda mareegaha ee bogga guusha isdiiwaangalinta.
Hubi inaad haysato VPC-ga caadiga ah oo leh DNS martigeliyaha magacyo meelaynta iyo shabakad hoose oo leh hawsha IPv4. Haddii aadan samayn, waxaad u baahan doontaa inaad abuurto.
Markaad haysato VPC-ga caadiga ah, wax ka beddel goobaha VPC oo awood u geli magacyada martigeliyaha DNS.
Samee shabakad hoose si aad ula xidhiidho VPC. Hubi inaad awood u siisay si toos ah u-ku-dejinta ciwaannada IPV4 ee dadweynaha ee goobaha shabakadaha hoose.
U samee albaabka internetka ee VPC kaaga, ku dheji VPC, oo ku dar dariiqa albaabka internetka ee miiska wadada.
Abuur koox cusub oo ammaan ah oo ku salaysan habaynta iibiyaha oo badbaadi
U beddel lamaanaha muhiimka ah ee aad ku faraxsan tahay isticmaalka ama soo saar lamaane fure cusub.
Markaad dhammayso tallaabooyinkan, waxaad bilaabi kartaa tusaale ahaan.

Sida loogu xidho Tusaalahaaga GoPhish

Si aad ugu xidho tusaalahaaga GoPhish, raac talaabooyinkan:

Gal akoonkaaga AWS oo aad EC2 dashboardka.
Guji tusaalooyinka oo raadi tusaalahaaga cusub ee GoPhish
Nuqul ka koobbi aqoonsigaaga tusaale, kaas oo ku hoos jira tiirka Aqoonsiga Tusaalaha.
Hubi in tusaalahaagu uu si sax ah u socdo adiga oo aadaya Status Checks tab oo xaqiijiya in ay ka gudubtay labada hubinta xaalada nidaamka.
Fur terminal oo ku xidh tusaale ahaan adigoo ordaya "ssh -i 'path/to/your/keypair.pem' ubuntu@instance-id" amarka.
Hadda waxaad geli kartaa maamulahaaga konsole adiga oo gelisa tusaale ahaan cinwaankaaga IP-ga ee biraawsarkaaga.

Dejinta server-kaaga SMTP ee Amazon SES

Haddii aadan haysan server SMTP kuu gaar ah, waxaad isticmaali kartaa Amazon SES sida server SMTP. SES waa adeeg dirida iimaylka aad loo cabiri karo oo qiimo jaban leh kaas oo loo isticmaali karo in lagu diro iimaylada wax kala iibsiga iyo suuq gaynta. SES sidoo kale waxaa loo isticmaali karaa sidii server SMTP ee Go Phish.

Si aad u dejiso SES, waxaad u baahan doontaa inaad samaysato akoon SES oo aad xaqiijiso ciwaanka iimaylka ama boggaga Markaad taas sameyso, waxaad isticmaali kartaa goobaha SMTP ee aan kor ku soo xusnay si aad u habayso tusaalahaaga Go Phish si aad SES u isticmaasho server-kaaga SMTP.

Dejinta SMTP

Markaad dejiso tusaalahaaga oo aad gasho konsolka maamulka, waxaad u badan tahay inaad rabto inaad habayso dejimahaaga SMTP. Tani waxay kuu ogolaanaysaa inaad iimaylo ka soo dirto tusaalahaaga Go Phish Si tan loo sameeyo, u gudub tabka "Dirida Profiles" ee ku yaal console-ka maamulka.

Qeybta diritaanka profiles, waxaad geli kartaa faahfaahinta server-kaaga SMTP, oo ay ku jiraan magaca martida loo yahay ama cinwaanka IP-ga ee server-kaaga SMTP, lambarka dekedda, iyo habka aqoonsiga. Haddii aad u isticmaalayso Amazon SES server-kaaga SMTP, waxaad isticmaali kartaa goobaha soo socda:

Magaca martida: email-smtp.us-west-2.amazonaws.com (ku beddel us-west-2 gobolka aad ka dhigtay akoonkaaga SES)
Dekadda: 587
Habka aqoonsiga: Login
Magaca isticmaale: magacaaga isticmaale ee SES SMTP
Password: eraygaaga sirta ah ee SES SMTP

Si aad u tijaabiso dejimahaaga SMTP, waxaad iimayl tijaabo ah u diri kartaa ciwaan gaar ah. Tani waxay hubin doontaa in dejimahaagu sax yihiin iyo inaad si guul leh uga soo diri karto iimaylada tusaalahaaga.

Ka saarida xayiraadaha dirida iimaylka

Sida caadiga ah, xaaladaha EC2 waxay leeyihiin xaddidaadyo iimaylka baxaya si looga hortago spam. Si kastaba ha ahaatee, xannibaadahani waxay noqon karaan dhibaato haddii aad u isticmaalayso tusaalahaaga diritaanka emailka sharciga ah, sida Go Phish.

Si aad meesha uga saarto xayiraadahan, waxaad u baahan doontaa inaad dhamaystirto dhawr tillaabo. Marka hore, waxaad u baahan doontaa inaad codsato in koontadaada laga saaro liiska "Amazon EC2 sending limits" Liiskani waxa uu xaddidayaa tirada iimaylada ee laga soo diri karo tusaale ahaan maalintii.

Marka xigta, waxaad u baahan doontaa inaad habayso tusaalahaaga si aad u isticmaasho ciwaanka iimaylka la xaqiijiyay ama domainka goobta "From" ee iimayladaada. Tan waxaa lagu samayn karaa qaybta "Email Templates" ee konsole maamulka. Adigoo isticmaalaya ciwaanka iimaylka ee la xaqiijiyay ama bogga, waxaad xaqiijin doontaa in iimayladaada ay aad ugu dhowdahay in lagu keeno sanduuqyada dadka qaata.

Ugu Dambeyn

Maqaalkan, waxaan daboolnay aasaaska aasaaska Go Phish ee Suuqa Suuqa AWS. Waxaan ka wada hadalnay sida loo helo oo loo rukumo dalabka Go Phish, sida loo bilaabo tusaalahaaga, sida loo galo dashboardka EC2 si loo hubiyo caafimaadka tusaalahaaga, iyo sida loogu xidho console-ka maamulka.

Waxaan sidoo kale daboolnay su'aalaha caadiga ah ee ku saabsan dirida iimaylka, oo ay ku jiraan sida loo cusbooneysiiyo goobahaaga SMTP, ka saar xayiraadaha dirida emailka, iyo u dejiso serverkaaga SMTP ee Amazon SES.

Iyada oo ay taasi macluumaad, waa inaad awood u yeelatid inaad si guul leh u dejiso oo aad u habayso Go Phish on AWS Marketplace, oo aad bilowdo socodsiinta jilitaanka phishing si aad u tijaabiso oo aad u hagaajiso ammaanka ururkaaga.

Waraaqaha Kobold: Weerarrada phishing-ka ee ku salaysan HTML

April 18, 2024 No Comments

Waraaqaha Kobold: Weerarrada phishing-ka iimaylka ku saleysan ee Maarso 31st 2024, Luta Security waxa ay soo saartay maqaal iftiiminaya vector cusub oo phishing ah, Waraaqaha Kobold.

Akhri wax dheeraad ah "

Google iyo khuraafaadka qarsoodiga ah

April 10, 2024 No Comments

Google iyo khuraafaadka qarsoodiga ah Abriil 1 2024, Google waxay ogolaatay inay dejiso dacwad iyada oo burburinaysa balaayiin xog ah oo laga soo ururiyay qaabka qarsoodiga.

Akhri wax dheeraad ah "

Cinwaanada MAC iyo Xoojinta MAC: Hage Dhamaystiran

April 6, 2024 No Comments

Cinwaanka MAC iyo Isku-dubbaridka MAC: Hordhac Laga bilaabo fududaynta isgaadhsiinta ilaa awoodsiinta xidhiidhada sugan, ciwaanada MAC waxay door aasaasi ah ka ciyaaraan aqoonsiga aaladaha

Akhri wax dheeraad ah "

Dejinta GoPhish Goobta Suuqa AWS: Hagaha Tallaabo-tallaabo

Hordhac

Sida Loo Helo oo Looga Rukumo GoPhish Goobta Suuqa AWS

Sida loo bilaabo Tusaalahaaga GoPhish

Sida loogu xidho Tusaalahaaga GoPhish

Dejinta server-kaaga SMTP ee Amazon SES

Dejinta SMTP

Ka saarida xayiraadaha dirida iimaylka

Ugu Dambeyn

Waraaqaha Kobold: Weerarrada phishing-ka ee ku salaysan HTML

Google iyo khuraafaadka qarsoodiga ah

Cinwaanada MAC iyo Xoojinta MAC: Hage Dhamaystiran

adeegyada

our Company

Cinwaankaaga

Solutions

Su'aalaha Amniga

Warbaahinta bulshada