Skill

performing-red-team-phishing-with-gophish

From asi

Automates GoPhish phishing simulation campaigns using Python gophish library: creates email templates with tracking, SMTP profiles, CSV target groups, launches campaigns, analyzes open/click/credential stats for security awareness.

Python

security

npx claudepluginhub plurigrid/asi --plugin asi

Tool Access

This skill uses the workspace's default tool permissions.

Preview

- When conducting security assessments that involve performing red team phishing with gophish

SKILL.md

Similar Skills

performing-red-team-phishing-with-gophish

5.9k

Automates GoPhish phishing campaigns with Python: creates tracked email templates, SMTP profiles, CSV target groups, launches simulations, analyzes opens, clicks, submissions for security assessments.

3 files

cybersecurity-skills

performing-red-team-phishing-with-gophish

Automates GoPhish phishing simulations using Python gophish library: creates email templates with tracking pixels, configures SMTP profiles from CSV targets, launches campaigns, analyzes open/click/submission rates for security awareness.

3 files

cybersecurity-skills-zh

performing-phishing-simulation-with-gophish

Deploys GoPhish for authorized phishing simulations: Docker/binary setup, SMTP/email templates, landing pages, campaigns, and result analysis for security awareness.

asi

Stats

Parent Repo Stars16

Parent Repo Forks5

Last CommitApr 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

# For authorized penetration testing and lab environments only python scripts/agent.py --gophish-url https://localhost:3333 --api-key <key> --campaign-name "Q1 Awareness" --output phishing_report.json

from gophish import Gophish from gophish.models import Campaign, Template, Group, SMTP, Page api = Gophish("api_key", host="https://localhost:3333", verify=False) # Self-signed cert on localhost lab campaign = Campaign(name="Q1 Test", groups=[Group(name="Sales Team")], template=Template(name="IT Password Reset"), smtp=SMTP(name="Internal SMTP"), page=Page(name="Credential Page")) api.campaigns.post(campaign)

When to Use

When conducting security assessments that involve performing red team phishing with gophish
When following incident response procedures for related security events
When performing scheduled security testing or auditing activities
When validating security controls through hands-on testing

Prerequisites

Familiarity with security operations concepts and tools
Access to a test or lab environment for safe execution
Python 3.8+ with required dependencies installed
Appropriate authorization for any testing activities

Instructions

Install dependencies: pip install gophish requests
Deploy GoPhish server and obtain an API key from Settings.
Use the Python gophish library to automate campaign setup:
- Create email templates with HTML body and tracking
- Configure SMTP sending profiles
- Import target groups from CSV
- Create landing pages for credential capture
- Launch and monitor campaigns
Analyze campaign results: opens, clicks, submitted data, reported.

# For authorized penetration testing and lab environments only
python scripts/agent.py --gophish-url https://localhost:3333 --api-key <key> --campaign-name "Q1 Awareness" --output phishing_report.json

Examples

Create Campaign via API

from gophish import Gophish
from gophish.models import Campaign, Template, Group, SMTP, Page
api = Gophish("api_key", host="https://localhost:3333", verify=False)  # Self-signed cert on localhost lab
campaign = Campaign(name="Q1 Test", groups=[Group(name="Sales Team")],
    template=Template(name="IT Password Reset"), smtp=SMTP(name="Internal SMTP"),
    page=Page(name="Credential Page"))
api.campaigns.post(campaign)