FAQ

    This means that you browsed to instead of https://admin_server (note the use of HTTPS).

    There is no fool proof way to bypass spam filters - this is a good thing!

    Something that might help increase deliverability is to set up your email infrastructure correctly to support modern email authentication protocols like SPF, DKIM, and DMARC. You can find more information about this here.

    However, for tests that aim to measure how users respond to phishing simulations, it’s recommend to temporarily whitelist the IP address of the server running Gophish.

    If you are seeing emails being sent successfully, but aren’t seeing events show up on the dashboard, it likely means there is a configuration error somewhere. You can follow these tips to help track it down.

    Check the Email Template

    A good way to see if this is working correctly is to send a test email to yourself when building a campaign and looking at the link. It should be the URL you used when creating the campaign with a unique rid parameter. So, it should look like this: http://your_url/?rid=XXXXX.

    Check the Campaign URL

    If the links in the email look good and you still don’t see events showing up, then the next step is to make sure the URL you’re using when building a campaign is correct.

    When creating a campaign, the URL field must point to the server running Gophish and must be reachable by the person opening the emails. This can either be the external IP address of the server, or a domain name that has a DNS A record pointing to the server’s IP address.

    Once manually browsing to your URL works, you can try to send a test email to yourself when building a campaign. If it works, you should see your landing page being returned. This means that the URL will likely work when used in a campaign, assuming it is reachable by all recipients.

    To capture data submitted through a landing page, you need to create an HTML <form> element on your landing page that has a few specific properties:

    Here is a minimal example <form> element which captures data:

    1. <form action="" method="POST">
    2.     <input name="username" type="text" placeholder="username" />
    4. </form>

    There are a few things to note about this form:

    • The action is "" so that form submissions are directed to your phishing page and, therefore, to your Gophish server
    • The form submission method is POST

    Each of these should be checked when troubleshooting HTML forms that don’t appear to be sending data correctly.

    Finally, ensure that when saving the landing page that you have both the “Capture Submitted Data” and “Capture Passwords” (if appropriate) options checked. Otherwise, Gophish will remove the name attributes from your inputs so they aren’t submitted with the form.