Terraform VPC & EC2

To create the a VPC in AWS to run GoPhish As a Service.

It will be necessary to have:

1️⃣ Terraform installed

2️⃣ AWS programmatic credentials

3️⃣ Your own Domain in Cloudflare

Create the Host A

Follow this Tutorial. You must save ZONE ID & ID to use in next steps.

Clone the proyect

git clone https://github.com/safernandez666/Terraform.git

Configure

You must change the variables on install.sh and upload your public_key on ec2.tf

API_EMAIL="XXXXX"
API_KEY="XXXXX"
RECORD_NAME="netflix.XXXX.XXX.XX"
ZONE_ID="XXXXX"
RECORD_ID="XXXXX"

How to Know the Record ID?

curl "https://api.cloudflare.com/client/v4/zones/XXXXX/dns_records/" \
     -H "Authorization: Bearer TOKEN" \
     -H "Content-Type:application/json" | jq .

Prepare de VPC with the GoPhish Server

terraform init
terraform plan
terraform apply 

Check the Output. You will have the address to connect by ssh to the instance. Then it will be necessary to know the default password of GoPhish.

Search the default password on Syslog

grep -n "Please login with the username admin and the password" /var/log/syslog

Ready to login on https://YOURDOMAIN:3333

Now you have the GoPhish Platform ready to use. In this tutorial I use netflix.ironbox.com.ar for test

Landing Page

Create the Landing Page. You must clone the original login page.

Sending Profile

You must fill the blanks with yout SMTP Server.

Email Template

Importe the email template, will be the raw file.

Time to test your users!

This tutorial is for practical purposes. One way to measure our awareness plan.