THREAT OPS › Threat News › Don’t Jump the Turnstile: Lessons from the Field
Don’t Jump the Turnstile: Lessons from the Field
<p class="wp-block-paragraph"><strong><em>TL;DR:</em> </strong><em>Phishing sandboxes are a pain. Cloudflare Turnstile can be used as an effective solution to conceal your phishing pages.</em></p>
<h2 class="wp-block-heading" id="h-intro">Intro</h2>
<p class="wp-block-paragraph">Recently, I was on a red team engagement that involved email phishing. I thought to myself, “No problem! I have do
MITRE ATT&CK techniques
- JavaScriptT1059.007
Indicators of compromise
- 5a6113c70e813b3f3904c140220f224emd5
- https://phishing-site.com/payload.htmlurl
- https://tracklock.gg/url
- https://tracklock.ggurl
- http://127.0.0.1:5000url
- https://certbot.eff.org/instructions?ws=nginx&os=ubuntufocalurl
- https://phishing-site.com/filter/url
- 124.0.0.0ipv4
- 131.0.0.0ipv4
- 138.0.0.0ipv4