60 Commits

Author SHA1 Message Date
Ronni Skansing 252e566475 add anonymize data feature
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-06-30 22:30:46 +02:00
Ronni Skansing 78427c7896 add company shared assets
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-06-18 09:41:54 +02:00
Ronni Skansing df555820f9 Add OIDC provider support.
Add exclusive SSO login support.

Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-06-17 23:41:03 +02:00
Ronni Skansing d1f100968e added report delivery
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-06-13 12:46:49 +02:00
Ronni Skansing 02f87b3e3a add remove recipient disable mark\nimprove UI SCIM modal texts
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-06-12 10:30:52 +02:00
Ronni Skansing 61ecc4c505 SCIM provisioning for companies with disabled recipient handling
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-06-11 20:34:13 +02:00
Ronni Skansing 3b322e44e0 add enable PDF generation setting
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-05-29 19:16:17 +02:00
Ronni Skansing 23539c10c9 report
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-05-29 17:28:50 +02:00
Ronni Skansing 1529c10b72 add favicon hiding when not authenticated
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-05-28 11:05:17 +02:00
Ronni Skansing bff948c760 added trusted ip forward header to phishing server
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-05-27 22:36:10 +02:00
Ronni Skansing 9bd048e4bf Remote Browser Feature
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-05-24 09:40:48 +02:00
Ronni Skansing 8b955c4742 fix totp code not replayable
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-04-29 19:52:13 +02:00
Ronni Skansing fda18732f8 apply rewrite_urls rules when redirecting to proxy pages
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-04-16 21:08:43 +02:00
Ronni Skansing 83f9e8f279 add auto remove orphans
fix orphans in dynamic groups not included

Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-03-29 16:30:01 +02:00
Ronni Skansing b0688f8da8 add dynamic groups
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-03-28 14:55:43 +01:00
Ronni Skansing 73b3287137 Add proxy support in device codes
Add clear device codes for campaign
2026-03-26 18:00:28 +01:00
Ronni Skansing 198c3a0f29 fix missing cascading of deleting an email used by templates or campaigns
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-03-21 12:31:31 +01:00
Ronni Skansing 43d6415894 MS Device code phishing
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-03-21 00:10:06 +01:00
Ronni Skansing 9efdb5c28d Add support for multiple webhooks per campaign
Add webhook links on campaign page

Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-02-28 14:19:54 +01:00
Ronni Skansing 2f5d1163d2 add latest events to dashboard, remove completed, fix missing auto refresh box 2026-02-12 20:58:08 +01:00
Ronni Skansing 6330544239 add headers to allow / deny filtering
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-02-11 23:02:00 +01:00
Ronni Skansing 0c9faec382 fix bad manual application update url
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-02-05 16:16:10 +01:00
Ronni Skansing 33845aeec2 added delete campaign event when campaign is open
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-02-03 21:31:02 +01:00
Ronni Skansing 3767adfad2 extend request deadline for applicatoin update
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2026-01-29 23:07:50 +01:00
Ronni Skansing bbc49deedd add import authorized oauth
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-12-13 21:39:08 +01:00
Ronni Skansing 2e9227900d add submit capture for PUT, PATCH and more content types
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-12-04 19:56:34 +01:00
Ronni Skansing 6c3c695941 Added support for random recipient variable
Random recipient can not be the recipient
Added support for variables in email subject

Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-27 00:41:14 +01:00
Ronni Skansing 2d5f5a4216 custom obfuscation
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-22 12:10:49 +01:00
Ronni Skansing f6eb87fa2b OAuth providers
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-20 23:54:00 +01:00
Ronni Skansing 70c7b6203d add option to add data to webhook events
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-14 20:50:50 +01:00
Ronni Skansing 396bbb29ab adding wehook missing calls
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-14 17:01:27 +01:00
Ronni Skansing 73efa9e341 added synthetic read events for when visiting a landing page and having no previous read email event
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-12 21:12:25 +01:00
Ronni Skansing fa1174e06c add option to save additional data
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-11 19:47:19 +01:00
Ronni Skansing 31a1348d4a added tools page
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-10 20:07:14 +01:00
Ronni Skansing 8a5de77b28 add deny page visit event
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-10 19:04:22 +01:00
Ronni Skansing 9c5acbed90 Add geo IP checking 2025-11-09 12:22:39 +01:00
Ronni Skansing 99b7244962 fix proxy filtering
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-06 23:08:25 +01:00
Ronni Skansing 691cff9659 ip filtering becomes filtering with ja4 and cidrs
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-05 21:10:33 +01:00
Ronni Skansing ff5921ec02 fix setting ja4
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-05 20:20:40 +01:00
Ronni Skansing 74a681b275 ja4 fingerprinting added to upstream request
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-05 20:13:53 +01:00
Ronni Skansing 4ce58fb235 extract proxy session management and add clear proxy sessions when updating a proxy config
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-04 21:42:31 +01:00
Ronni Skansing ff2f2a36c7 Added options for campaign obfuscation
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-11-01 22:53:43 +01:00
Ronni Skansing 9014fb6477 render page can use template variables. Added panic debug info
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-10-24 15:31:27 +02:00
Ronni Skansing dda9a66437 Update proxy yaml completions
Added rewrite-url directive
Access directive is 404 and private by default
Fixed missing data capture
Fix missing data capture
MITM campaign now use campaign template domain for all pages exception
mitm page and evasion page.
Fix always start new session on initial page visit
Use the random mitm cookie name
Use proxy target URL for mitm page
2025-10-24 14:43:09 +02:00
Ronni Skansing 031d5f93bc Merge branch 'fix-change-access-directive' into develop 2025-10-23 12:56:00 +02:00
Ronni Skansing d6a717ebfa change access directive and add management for proxy allow list
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-10-23 12:55:51 +02:00
Ronni Skansing 061ef4b623 add company stats
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-10-23 12:19:53 +02:00
Ronni Skansing d6a1060009 fix proxy domains should not be shown in various places
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-10-20 19:41:09 +02:00
Ronni Skansing 26880e36cf Evasion page implementation.
Fix ip filtering.
Support for ip filter in proxies
2025-10-19 13:44:44 +02:00
Ronni Skansing c7910cbafb add orphans recipients page and delete all orphaned
Signed-off-by: Ronni Skansing <rskansing@gmail.com>
2025-10-14 20:26:27 +02:00