Anglerphish is a feature-rich fork of Gophish, the open-source phishing simulation framework, built to address limitations encountered in real-world security engagements. Key additions include multi-vector campaign support (SMS via Twilio/Vonage, QR codes, HTTP Basic Auth flows, MFA/OTP simulation), Campaign Sets for draft-based orchestration of multiple campaigns, structured Word/Excel report generation, and AES-256-GCM encryption for sensitive database fields like SMTP credentials and captured data. Additional quality-of-life improvements include URL templates, template previews, enhanced IMAP monitoring, and expanded personalization variables. The project is open source and available on GitHub.
Table of contents
From Side Project to an Upgraded Gophish PlatformSort: