Glenn Wilkinson
Glenn Wilkinson
This would be awesome.
@sabrinamcclendon - you can add custom headers in the Sending Profile: (make sure you have the latest version as there was an issue saving headers)
Do you mean when you try login to gophish as the admin user? Make sure you're copying the randomly created password out of the terminal screen
Closing out as haven't heard back. Feel free to reopen.
Great catch here as usual @Mr3Jane - this is super interesting. I've been doing [some](https://www.alexedwards.net/blog/configuring-sqldb) [reading](https://making.pusher.com/production-ready-connection-pooling-in-go/) and it seems there are three properties which can be fine tuned: ```go db.SetMaxOpenConns()...
This seems like a decent idea, and I don't think too difficult to do. I'd need to add a delete event API endpoint, and a button next to captured credentials....
Good question @luminous706, and the answer seems to be yes. On a fresh database I created a campaign and captured credentials, here they are in the database: ``` sqlite> SELECT...
@tarrinho I'm not sure if you'll be able to get extra verbosity in the gophish logs, but you could insert a webproxy to output all requests + headers. Or run...
Thanks all for your work on this and patience in getting it merged in. @mcab what are your thoughts on the comment from @tekkamanendless (https://github.com/gophish/gophish/pull/2301#issuecomment-1012124589) with the three small modifications?
I've tested the PR with ngrok and it works well: `ngrok http -bind-tls=true https://localhost:3333` amending `config.json`: `"trusted_origins": "0a29-188-241-83-115.ngrok.io"` and we no longer get the CSRF error. Of interest wildcards don't...