Phishes In A Barrel 1.1

The Phishes in a Barrel Clickjacker is a tool that can be used to test if a website is vulnerable to clickjacking, an attack where a website can be loaded into another website through iframes

Phishes in a Barrel / Barrel Of Phishes is our internal nickname for our tools for online shennanigans

Setup your 'barrel'

Use the form below to setup your Barrel. Please remember that Barrels can only be setup for demonstration purposes. Your barrel will reset as soon as your browser session ends.

In *real* Clickjacking scenarios, a similar technique would be used to lad the website and try and steal information from your visitors E.G stealing credentials, reset their passwords, ... wheares we just display a form - that doesn't actually collect any data.

If you are interested in a more advanced version of Clickjacker which captures form data, tracks which user clicked mails... ask me about PhishesLaravel. :)

A "Barrel" is an environment to test Clickjacking. It'll dissapear as soon as your browser session ends.
Under "Website URL, paste or write the full URL E.G https://www.somewebsite.com
Under "Message", write the message that you want to appear in the Barrel. This message will be used to convince the user to click the button.
Under "Button Message" write the text you want to use for the button.
Under "Authentication", choose a login form you want to emulate. Choose Microsoft for now
Why Barrel Of Phishes? Because.

Phishes in a Barrel - Clickjacker

About

Setup your 'barrel'