Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Not able to spoof 2fa ip location, facebook. Device based 2fa location retrieves evilginx host ip location instead of actual client ip #1142

Open
ghost-hub1 opened this issue Nov 26, 2024 · 2 comments
Open

Not able to spoof 2fa ip location, facebook. Device based 2fa location retrieves evilginx host ip location instead of actual client ip #1142

ghost-hub1 opened this issue Nov 26, 2024 · 2 comments

Comments

@ghost-hub1
Copy link

Hello guys,

Is there anyone that can help as to how to modify the http_proxy.go file in evilginx core cos when facebook sends 2fa auth to the device, it shows the location of the server hosting evilginx instead of retrieving the actual client's ip address but ua is good, issue is with the ip address somehow and after inspecting facebook network over and over, they dont use headers for ip address otherwise, this would have been very easy...

Please 🙏 anyone with help??? every other thing works so far just that when it is time to approve 2fa and you see another location?? that is definitely a problem.
@ghost
Copy link

ghost commented Nov 27, 2024

https://youtu.be/CpR9lA81NzM?si=xy9HFmAg1Z0FTE5z

@whithey79
Copy link

Does your facebook phishlets capture credentials and cookies?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ghost-hub1 @whithey79