The Bait Lab – Phishing Simulations, Practical Campaigns with GoPhish & Evilginx (PART: II)

This entry is part 16 of 22 in the series Red Team Engagements

Views: 14Disclaimer “This guide is for authorized testing in a controlled environment. Obtain written approval before sending any simulated emails.” SekurFinCorp: Phishing Simulation (Credential Capture via a Realistic Banking Lure) In Part 1 we covered installing and configuring GoPhish. This article walks through a complete phishing simulation: building user groups, crafting a realistic email template, … Read more

The Bait Lab – Phishing Simulations, Practical Campaigns with GoPhish & Evilginx (PART: I)

This entry is part 15 of 22 in the series Red Team Engagements

Views: 30Disclaimer “This guide is for authorized testing in a controlled environment. Obtain written approval before sending any simulated emails.” Installing GoPhish on Ubuntu 24.04 GoPhish provides a complete platform to design, launch, and track phishing campaigns — making it the perfect entry point for building phishing simulations in a controlled red team lab. Phishing … Read more

Operationalizing Security: CALDERA Meets WAZUH (PART I)

This entry is part 1 of 22 in the series Red Team Engagements

Views: 206CALDERA™ is an open-source framework designed to run autonomous adversary emulation exercises efficiently. It enables users to emulate real-world attack scenarios and assess the effectiveness of their security defences. In addition, it provides a modular environment for red team engagements, supporting red team operators for the manual execution of TTPs and blue teamers for automated … Read more