# EvilGinx3 Phishing Campaign Template

## Campaign Information

| Field | Value |
|-------|-------|
| Campaign Name | |
| Target Organization | |
| Authorization Reference | |
| Target Service | Microsoft 365 / Google / Okta / Other |
| Start Date | |
| End Date | |

## Infrastructure

| Component | Details |
|-----------|---------|
| Phishing Domain | |
| Server IP | |
| Phishlet | |
| SSL Certificate | Let's Encrypt (auto) |
| Redirector | Yes / No |

## Target List

| # | Email | Department | Pretext |
|---|-------|------------|---------|
| 1 | | | |
| 2 | | | |

## Session Captures

| # | Session ID | Username | Cookies Captured | Time | MFA Bypassed |
|---|-----------|----------|-----------------|------|--------------|
| 1 | | | Yes / No | | Yes / No |

## Results Summary

| Metric | Value |
|--------|-------|
| Emails Sent | |
| Emails Opened | |
| Links Clicked | |
| Credentials Captured | |
| Sessions Hijacked | |
| MFA Bypassed | |

## Evidence Checklist

- [ ] Phishing email screenshot
- [ ] EvilGinx3 session capture output
- [ ] Cookie export file
- [ ] Browser session hijack screenshot
- [ ] Post-authentication access evidence
- [ ] Target mailbox/resource access proof