Skip to content

Zphisher Cheat Sheet

zphisher is an automated phishing framework that provides ready-made phishing templates for popular services and handles link generation, tunneling, and credential capture.

Start Zphisher

git clone https://github.com/htr-tech/zphisher
cd zphisher
bash zphisher.sh

Basic Workflow

  1. Launch Zphisher
  2. Select phishing category
  3. Choose service template
  4. Select tunneling method
  5. Share generated link
  6. Capture credentials

Tunneling Options

Zphisher supports multiple tunneling services:

  • Ngrok
  • Cloudflared
  • Localhost
  • Serveo (legacy)

Select interactively: 

Choose tunneling option from menu

Phishing Categories

Common categories: - Social Media - Email Providers - Cloud Services - Developer Platforms - Payment Services

Credential Capture

Captured data includes: - Username - Password - IP address - Browser information

Stored in: 

zphisher/auth/

Session Logs

zphisher/logs/

Contains: - Visit timestamps - IP addresses - User agents

Custom Port

bash zphisher.sh --port 8080

Stop Zphisher

Ctrl + C

Typical Workflow

Start zphisher
Select template
Choose tunnel
Send link
Monitor credentials

Common Issues

Link not accessible
  • Tunnel service down
  • Firewall blocking outbound traffic
HTTPS warnings
  • Certificate issues with tunnel
  • setoolkit
  • wifiphisher
  • gophish
  • beEF

Use Cases

  • Security awareness training
  • Red team simulations
  • Phishing detection testing

Danger

Use Zphisher only for educational purposes or authorized security testing.