Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Inconsistent behaviour #1

Open
codeitch opened this issue Apr 17, 2024 · 1 comment
Open

Inconsistent behaviour #1

codeitch opened this issue Apr 17, 2024 · 1 comment

Comments

@codeitch
Copy link

codeitch commented Apr 17, 2024
edited
Loading

Great tool indeed! I however noticed, that some of my users get signed in, but the phishing function proceeds with only the first two request, namely:

and

Don't you know what makes it stop there, instead of proxying remaining requests (i.e. https://login.microsoftonline.com//common/login, https://login.microsoftonline.com//common/SAS/BeginAuth, https://login.microsoftonline.com//common/SAS/EndAuth,https://login.microsoftonline.com//common/SAS/ProcessAuth, etc.)
@nicolonsky
Copy link
Owner

@codeitch have you adjusted the user-agent header in the code? Depending on the registered authentication methods for the user Entra ID will upgrade the connection to websockets for capable browsers. Otherwise I couldn't repro this

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@codeitch @nicolonsky