Spaces:

jauganaut1
/

judicialdoc2

Running

App Files Files Community

20.4 kB

1 contributor

History: 3 commits

jauganaut1's picture

undefined - Follow Up Deployment

4806fc6 verified 6 months ago

.gitattributes
1.52 kB

initial commit 6 months ago
README.md
216 Bytes

**Objective:** Create a realistic but safe phishing simulation page for employee cybersecurity training targeting B2B professionals. **Theme:** Fake "Urgent Court Order Summons" requiring authentication. **Key Requirements:** 1. **Lure:** - Email subject: `[URGENT] Action Required: Court Summons #{random_number} - Response Deadline {today+3 days}` - Body: "Your organization is named in a legal proceeding. Attached is a confidential court summons (Case #: {random}). Download and authenticate immediately to avoid penalties. Do not share externally." 2. **Landing Page:** - Professional design mimicking a legal portal (use scales of justice imagery, fake government seals). - Headline: "**RESTRICTED ACCESS: OFFICIAL COURT DOCUMENT**" - Instructions: "Enter your corporate email and password to decrypt and view this summons (per Article 12.B of Judicial Code)." - Fields: `Email (Organization Address)`, `Password`, `[SUBMIT]` button. 3. **Post-Submission:** - After credentials are entered (regardless of input), display: > "⚠️ AUTHENTICATION ERROR: Invalid credentials or security clearance. > - Ensure Caps Lock is off > - Use your primary corporate account > - Contact IT Support if issues persist" - **NO redirection or further action.** 4. **Educational Components:** - After 5 seconds, auto-redirect to a training page titled: "**CYBERSECURITY ALERT: This was a simulated phishing exercise.**" - Include: - "Why this was suspicious: (1) Urgent legal threats, (2) Password requests for documents, (3) Generic sender address" - "Report real phishing attempts to: report-phish@yourcompany.com" - Tips: "Legitimate entities NEVER ask for passwords via email attachments." 5. **Safety & Ethics:** - **NO data storage:** Simulated credentials must be discarded instantly. - Visible disclaimer in page footer: "Simulated training page - {Your Company Name} Security Team" - Pre-approval mandatory: Run ONLY for consented employees with HR/Legal oversight. - Initial Deployment 6 months ago
index.html
18.3 kB

**Objective:** Create a realistic but safe phishing simulation page for employee cybersecurity training targeting B2B professionals. **Theme:** Fake "Urgent Court Order Summons" requiring authentication. **Key Requirements:** 1. **Lure:** - Email subject: `[URGENT] Action Required: Court Summons #{random_number} - Response Deadline {today+3 days}` - Body: "Your organization is named in a legal proceeding. Attached is a confidential court summons (Case #: {random}). Download and authenticate immediately to avoid penalties. Do not share externally." 2. **Landing Page:** - Professional design mimicking a legal portal (use scales of justice imagery, fake government seals). - Headline: "**RESTRICTED ACCESS: OFFICIAL COURT DOCUMENT**" - Instructions: "Enter your corporate email and password to decrypt and view this summons (per Article 12.B of Judicial Code)." - Fields: `Email (Organization Address)`, `Password`, `[SUBMIT]` button. 3. **Post-Submission:** - After credentials are entered (regardless of input), display: > "⚠️ AUTHENTICATION ERROR: Invalid credentials or security clearance. > - Ensure Caps Lock is off > - Use your primary corporate account > - Contact IT Support if issues persist" - **NO redirection or further action.** 4. **Educational Components:** - After 5 seconds, auto-redirect to a training page titled: "**CYBERSECURITY ALERT: This was a simulated phishing exercise.**" - Include: - "Why this was suspicious: (1) Urgent legal threats, (2) Password requests for documents, (3) Generic sender address" - "Report real phishing attempts to: report-phish@yourcompany.com" - Tips: "Legitimate entities NEVER ask for passwords via email attachments." 5. **Safety & Ethics:** - **NO data storage:** Simulated credentials must be discarded instantly. - Visible disclaimer in page footer: "Simulated training page - {Your Company Name} Security Team" - Pre-approval mandatory: Run ONLY for consented employees with HR/Legal oversight. - Initial Deployment 6 months ago
style.css
388 Bytes

initial commit 6 months ago