MyHackingBlog Notes

CtrlK

Evil Links

Open Redirects

Google currently (February 2022) has an open redirect which can be abused.

https://accounts.google.com/ServiceLogin?continue=https%3A%2F%2Fappengine.google.com%2F_ah%2Fconflogin%3Fcontinue%3Dhttps%3A%2F%2Fnotes.myhackingblog.com%2F&service=ah After the victim clicks the link they'll authenticate with google and be redirected to our phishing page.

PreviousUnicode Domains NextEmail Protections

Last updated 3 years ago

Was this helpful?