Evilginx2 vs Modlishka
GitHub Stats
About Evilginx2
Evilginx2 is a man-in-the-middle attack framework used for phishing login credentials along with session cookies, which in turn allows bypassing multi-factor authentication. It acts as a reverse proxy between the victim and the real website, proxying all traffic while capturing credentials and session tokens in real time. This makes it a critical tool for demonstrating the limitations of traditional 2FA and testing organizational resilience to advanced phishing attacks.
About Modlishka
Modlishka is an automated HTTP reverse proxy that facilitates 2FA phishing by performing real-time credential and token harvesting. Written in Go, it allows attackers to seamlessly capture user authentication data while bypassing two-factor authentication mechanisms. Modlishka's automation and real-time capabilities make it a significant tool for adversaries seeking to exploit web authentication flows in phishing campaigns.
Platform Support
Tags
Shared
Evilginx2 only
Modlishka only