Want to create great phishing links using an open-redirect on google.com? While they don't last forever, they are a great way to trick unsuspecting victims into clicking a legit looking URL before expiring! gist.github.com/ustayready/3ba… Follow the 🧵for how it works.. 
It's actually pretty easy to do manually too! When you add comments to a Doc in Google Workspace, Google will swap out the links using a www[.]google[.]com redirect. So all you need to do is..
1) Create a doc
2) Add a comment with your real phishing URL
3) Send phish w/ new link
1) Create a doc
2) Add a comment with your real phishing URL
3) Send phish w/ new link
To use the gist I posted, you need to create an app on Google Cloud, configure the consent screen, enable Google Docs API, and add credentials.
Once you save the creds, create a Python virtual env and pip install -r requirements.txt w/ the google_lure.py file. Running the script will prompt you to authorize the app. Use a burner account and authorize it.
Finally, the script will do the following:
1) Create a temp doc file
2) Create a comment on the doc
3) Extract the Google redirect URL
4) Delete the temp doc file
That's all! Enjoy.
1) Create a temp doc file
2) Create a comment on the doc
3) Extract the Google redirect URL
4) Delete the temp doc file
That's all! Enjoy.
• • •
Missing some Tweet in this thread? You can try to
force a refresh
