close
Skip to content

Accurate-Cyber-Defense/awesome_phishing_bot

BranchesTags

Repository files navigation

awesome_phishing_bot

phishing1

awesome_phishing_bot is a controlled, simulation-only platform for cybersecurity professionals, ethical hackers, and red teamers to conduct realistic phishing awareness drills within authorized environments. It integrates social engineering scenarios across multiple communication channels—Telegram, Discord, WhatsApp, and Slack—allowing defenders to test human risk factors safely.

Core Features (Simulated & Consent-Based)

Multi‑platform command interface – Authorized users issue commands via Telegram, Discord, WhatsApp, or Slack bots, all logged and auditable.

Social engineering templates – Pre‑built, non‑malicious scenarios (e.g., fake IT alerts, password expiry notices) that never capture real credentials unless within a sandboxed training environment with explicit consent.

Cross‑site simulation – Supports mock login pages, fake attachment warnings, and deceptive links that redirect to educational landing pages explaining the test.

Analytics dashboard – Tracks click rates, report rates, and user response times to measure training effectiveness.

Role‑based access – Only pre‑approved cybersecurity staff can launch drills; all campaigns require written authorization.

Use Cases

  • Cyber drills – Red teams simulate targeted phishing campaigns to test incident response.

  • Security training – Train employees to recognize and report real phishing attempts using harmless, realistic exercises.

  • Compliance validation – Demonstrate adherence to frameworks like NIST, ISO 27001, or PCI DSS regarding human risk.

Ethical & Legal Guardrails

  • No real credential harvesting – The bot never stores passwords, OTPs, or personal data.

  • Logging & consent – Every drill is logged; participants must be notified post‑exercise.

  • Platform restrictions – Requires API whitelisting and cannot operate outside approved tenant environments.

  • Penalty for misuse – Unauthorized use violates terms of service and may constitute illegal hacking.

Target Audience

  • Corporate security teams

  • MSSPs conducting red‑team exercises

  • Academic cybersecurity programs

  • Government cyber defense units

How to clone the repo

git clone https://github.com/Accurate-Cyber-Defense/awesome_phishing_bot.git
cd awesome_phishing_bot.py

How to run

python awesome_phishing_bot.py

About

awesome_phishing_bot is a controlled, simulation-only platform for cybersecurity professionals, ethical hackers, and red teamers to conduct realistic phishing awareness drills within authorized environments.

Topics

slack api readme awesome api-gateway technology api-client cybersecurity api-rest slack-bot africa telegrambot malawi

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages