Ares is a Phishing toolkit for red teams and pentesters.

Ares is a Phishing toolkit for red teams and pentesters.

Ares is a Phishing toolkit for red teams and pentesters. Ares allows security testers to create a landing page easily, embedded within the original site. Ares acts as a proxy between the phised and original site, and allows (realtime) modifications and injects. All references to the original site are being rewritten to the new site. Users will use the site like they’ll normally do, but every step will be recorded of influenced. Ares will work perfect with dns poisoning as well.

Features:
* realtime 1 to 1 of original site
* modify specific paths to return static (rendered as Go template) files
* create redirects (short urls)
* inject scripts into target site
* support ssl (using lets encrypt)
* multiple targets / hosts
* enhanced filtering on path, method, ip addresses and useragent
* all requests and responses are being logged into Elasticsearch
* all data is being stored for caching / retrieval

ares

Todo:
+ create small frontend for configuration, monitoring and dashboard
+ send emails from toolkit

Injects
The injects can be inserted in the target site, currently we have the following injects:
+ location will ask the client for longitude and latitude and post to server
+ snap will generate screenshots and post to server
+ clipboard will copy text from clipboard and post to server

Dependencies:
+ Golang 1.7.x

Usage:

Source: https://github.com/dutchcoders