Zolemba za Gophish
Navigation
Momwe mungakhazikitsire Seva ya Imelo ya SMTP yoyeserera ya Phish mu 2022
Kodi mukuganiza zokhazikitsa kampeni yanu yoyesa chinyengo chaka chino?
Social Engineering yakula kukhala chiwopsezo chachikulu mu 2022 ndipo mukuganiza zothana nazo.
Komabe zochepetsera zomwe makampani akhazikitsa zapangitsa izi kukhala zovuta kuposa kale.
Kuti muyambe mufunika zinthu zingapo.
Mufunika seva yovomerezeka ya imelo ya SMTP.
Izi zitha kukhala zovuta chifukwa ambiri opereka mtambo amaletsa magalimoto a SMTP.
Mufunikanso dashboard kuti muzitsatira, ndikusanthula zomwe mwapeza pama social engineering.
Izi zikuthandizani kuti muwone momwe zikuyendera ndikufotokozeranso gulu lalikulu.
Kukhazikitsa izi kutha kutenga milungu ingapo ya ntchito kuphatikiza kuyesa, ndikuwonjezera madola masauzande ambiri pantchito.
Ichi ndichifukwa chake tapanga bukhuli kuti likuwonetseni momwe mungakhazikitsire seva ya SMTP pa operekera omwe saletsa SMTP.
Pamapeto pa bukhuli mudzadziwa momwe mungasinthire ndikuteteza sevayo kuti ithe kutumiza mauthenga.
Komanso mudziwa kutenthetsa adilesi ya IP yomwe seva ikugwiritsa ntchito kuti mauthenga aperekedwe.
Tikhala tikugwiritsa ntchito chida chotchedwa Poste.io kuti tithandizire kukonza ma seva.
Tikuwonetsaninso momwe mungakhazikitsire phishing dashboard yomwe mungagwiritse ntchito potsata ndikusanthula zomwe mwapeza.
Tili ndi dashboard leveraging GoPhish pa Amazon Web Services yokonzeka kukhazikitsidwa.
Mukhoza kuyatsa ndi kuzimitsa bolodi ili pamene mukufunikira kukonza ndi kusanthula makampeni anu oyesa chinyengo.
Momwe mungakhazikitsire Seva yanu ya SMTP
Choyamba muyenera kupeza VPS kuchokera kwa wothandizira omwe amalola SMTP traffic.
Izi zikutanthauza Contabo, Hetzner, LunaNode, BuyVM, kapena Scaleway.
Tigwiritsa ntchito Contabo mu chitsanzo ichi.
- Pangani akaunti ku Contabo ndi osachepera 4GB ya RAM ndi 80 GB malo osungira.
Dinani apa kuti mutsegule Contabo VM ndi zokonda zosankhidwa kale.
- Mutha kusankha mawu omwe akugwirizana ndi zomwe mumagwiritsa ntchito.
Gulu lathu limagwiritsa ntchito mawu apamwezi pokhapokha ngati tili ndi mgwirizano wotalikirapo woyeserera zachinyengo.
- Kenako mudzafuna kusankha dera lomwe lili pafupi kwambiri ndi bungwe lomwe mukuyesa.
Pankhaniyi, ndikhala ndikugwiritsa ntchito US East ku Contabo.
- VPS yomwe mumagwiritsa ntchito posungira seva yanu ya SMTP iyenera kukhala ndi 4 GB ya RAM ndi osachepera 80GB ya malo osungira.
- Kenako mudzafuna kusankha Operating System, sankhani Ubuntu 20.04 kuti muwonetsetse kuti ikugwirizana.
6. Sankhani mawu achinsinsi omwe mungagwiritse ntchito polowera seva yanu kudzera pa SSH. Mutha kupanga mawu achinsinsi apa: https://passwordsgenerator.net/
Onetsetsani kusunga izi mu achinsinsi woyang'anira ngati LastPass mtsogolo.
- Onetsetsani kuti mwapatsidwa adilesi imodzi yapagulu!
8. Mutha kusiya zosasintha za Addons ndi Server Quantity mu Contabo.
- Pambuyo pake, muyenera kulowa kapena kupanga akaunti.
- Mukangolowa, perekani malipiro a mwezi uliwonse pa ntchitoyo.
- Mukalipira, mudzalandira imelo yotsimikizira seva yanu ikakhazikitsidwa.
- Kenako tilowa mu seva ndikuyamba kukhazikitsa seva yanu ya SMTP pogwiritsa ntchito Poste.io.
Muyenera kugwiritsa ntchito dzina lolowera (muzu) ndi mawu achinsinsi omwe mudapanga kale kuti mulowe ku seva kudzera pa SSH.
13. Mutha kulumikizana ndi kasitomala wanu wa SSH, monga MobaXTerm kapena PuTTY.
Mukalowa mu seva, mudzafuna kupita ku Poste.io ndikuyendetsa izi:
- Ikani Docker Engine pa seva yanu ya Ubuntu pogwiritsa ntchito malangizo omwe ali ndi Quickstart script apa:
curl -fsSL https://get.docker.com -o get-docker.sh
sudo sh get-docker.sh
- Mutha kukhazikitsanso Docker Engine pogwiritsa ntchito malamulo otsatirawa ngati script ya Quickstart sikugwira ntchito pakugawa kwanu kwa Ubuntu:
sudo apt-get update
sudo apt-get kukhazikitsa \
ziphaso \
kupindika \
gnupg
lsb-kumasulidwa
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg -dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg
echo \
"deb [arch=$(dpkg -print-architecture) sign-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu \
$(lsb_release -cs) khola” | sudo tee /etc/apt/sources.list.d/docker.list> /dev/null
sudo apt-get update
sudo apt-get kukhazikitsa docker-ce docker-ce-cli containerd.io docker-compose-plugin
- Tsimikizani Injini ya Docker ikuyenda ndi lamulo ili lomwe liyenera kutulutsa Hello World kenako ndikutseka chidebe cha Docker:
sudo docker kuthamanga moni-dziko
17. Koperani ndi kuthamanga Dockerfile kuchokera Poste.io kuchokera https://poste.io/doc/getting-started pogwiritsa ntchito lamulo ili pansipa.
$ docker run \
-net=host \
-e TZ=America/New_York \
-v /your-data-dir/data:/data \
-name "mailserver" \
-h "mail.yourphishdomain.com" \
-t analogic/poste.io
Pali zosintha zingapo zomwe mungafune kupanga ku lamulo ili:
- -ndi TZ=America/ New_York Khazikitsani nthawi yanthawi yoyenera
- -v /your-data-dir/data:/data Imayika chikwatu cha data kuchokera ku host host. Nawonso database ya ogwiritsa, maimelo, zipika, zonse zitha kukhala mu bukhuli kuti zisungidwe mosavuta.
- - dzina "mailserver" Thamangani poste.io ngati chidebe chokhala ndi dzina lofotokozedwa
- -h "mail.yourphishdomain.com" Dzina la olandila la seva yanu yoyeserera maimelo a phish
Poste.io ikonza njira zachitetezo zaposachedwa, TLS, SPF, DKIM, ndi DMARC m'malo mwanu.
- Gwiritsani ntchito chida cha IP Warming kwa maola osachepera 72 musanayambe kampeni yoyesa chinyengo.
Lemlist ndi $29/mo, ndipo WarmupInbox ndi $9/mo, tchulani IP Warming SOP kuti mumve zambiri.
Chonde onani zathu "Momwe Mungatenthetsere IP" kalozera pazowunikira kutentha kwa IP.
SOP: Momwe mungatenthetse IP pa seva yatsopano ya imelo
- Tsatani mbiri ya IP pogwiritsa ntchito poste.io/dnsbl, mxtoolbox.com/blacklists.aspx kapena dnsbl.info.
20. Yesani seva yamakalata ndi ma templates a imelo pogwiritsa ntchito mail-tester.com kuti muwongolere kutumiza.
Momwe Mungakhazikitsire Dashboard Yanu Yoyesa Phish
21. Pangani kapena lowani mu Akaunti yanu ya AWS
22. Pitani pamndandanda wamisika ya GoPhish
23. Yambitsani kuyesa kwaulere ndi mndandanda wamsika
24. Landirani mfundozo ndikupereka seva ya GoPhish mkati mwa akaunti yanu ya AWS. Ngati mukupanga akaunti yatsopano, Amazon idzatsimikizira akaunti yanu ndikukutumizirani zotsimikizira ndi imelo.
25. Lowani mu GoPhish dashboard yanu pogwiritsa ntchito dzina lanu lolowera ndi ID yachitsanzo.
26. Konzani Mbiri Yanu Yotumizira kuti mugwiritse ntchito seva yanu yatsopano ya Poste.io SMTP pa Contabo.
Tsatanetsatane wa kulumikizana kwa SMTP
- host: mail.yourphishdomain.com
- doko: 465 (TLS ikufunika), 587 mwanjira ina (STARTTLS ikufunika)
- kutsimikizika kumafunika
- lolowera ndi imelo yonse username@example.com
- 27. Konzani Kampeni yanu yoyamba.
- 28. Tumizani Kampeni yanu yoyamba
Muli ndi mafunso? Mutha kuwona zolemba zathu za GoPhish apa, kapena kutifikira kuti tikuthandizeni support@hailbytes.com
MAFUNSO OFUNIKA KWAMBIRI
- host: mail.yourphishdomain.com
- doko: 465 (TLS ikufunika), 587 mwanjira ina (STARTTLS ikufunika)
- kutsimikizika kumafunika
- lolowera ndi imelo yonse username@example.com
- 27. Konzani Kampeni yanu yoyamba.
- 28. Tumizani Kampeni yanu yoyamba
Muli ndi mafunso? Mutha kuwona zolemba zathu za GoPhish apa, kapena kutifikira kuti tikuthandizeni support@hailbytes.com