Create a Phishing Word Doc


API URLTargetOrganizationPayloadsSlack Settings
(Not Required)
HTTP Call
SMB Hash
Auth Prompt

Not Required - Defaults to Conf

Not Required - Defaults to Conf
(Optional - Weaponize Your Own Document!)





The generated Word doc will call back via HTTP to the Slack API specified in the API's php file. Also, a UNC path will be created as well in an attempt to capture NTLMv2 SMB requests. Make sure your server allows TCP 445 and you're running Responder when the documents are opened for added fun! :)

If you don't trust me enough to provide your Slack Token (can't blame you!) you can serve your own by downloading the source code on my Github page!