GSTRIKE is a powerful Google-based spear phishing toolkit created to simulate realistic social engineering attacks. It’s designed for red teaming, awareness training, and ethical phishing simulations. The toolkit includes automated email template generation, and port forwarding for live payload interaction.
GSTRIKE makes it easier to craft convincing phishing emails that look and feel legitimate by mimicking Google's native email styles and integrating user-supplied data dynamically.
-
Automated Email Template Generator: Generate Google-style emails with custom content, links, and spoofed address, profile picture.
-
Realistic Email Templates: Includes multiple prebuilt templates resembling real Google security alerts — designed to trigger user interaction by mimicking security warnings, login alerts, or unusual activity messages.
-
2FA OTP Capture: Includes support for harvesting one-time passcodes (OTP). When the victim enters a 2FA code into the spoofed login form, the tool can capture and display it in real time.
-
Port Forwarding Support: Integration with services like cloudflare for exposing local phishing pages over the internet for testing or engagement.
-
EML File Support: Allows importing and modifying google .eml message files. Useful for cloning and customizing authentic google email layouts.
-
Built-in Email Sender: Send phishing emails directly from the tool using your own SMTP credentials. Just enter your email address and app-specific password to start sending.
- goto this link: https://myaccount.google.com/u/0/apppasswords
git clone https://github.com/0xbitx/DEDSEC_GSTRIKE.git
pip3 install requests qrcode[pil] tabulate tqdm beautifulsoup4
cd DEDSEC_GSTRIKE
chmod +x dedsec-gstrike
./dedsec-gstrike
or
sudo apt install ./dedsec-gstrike.deb
dedsec-gstrike
- Kali Linux
- Parrot OS
- Ubuntu
This tool is intended for educational and security research purposes only. Unauthorized usage may be illegal in your jurisdiction. The author is not responsible for any misuse of this tool.