PyPhisher - Easy to use phishing tool with 65 website templates


PyPhiser is an ultimate phishing tool in python. Includes popular websites like Facebook, Twitter, Instagram, Github, Reddit, Gmail, and many others.


Install primary dependencies (git and python)

  • For Debian
    • sudo apt install git python -y
  • For Arch
    • sudo pacman -S git python --noconfirm
  • For Fedora
    • sudo yum install git python -y
  • For Termux
    • pkg install git python -y

Clone this repository

  • git clone

Enter the directory

  • cd PyPhisher

Run the tool

  • python3

Or, directly run

wget && python3


usage: [-h] [-p PORT] [-o OPTION]
                    [--update | --no-update]

  -h, --help            show this help message and exit
  -p PORT, --port PORT  PyPhisher's server port [ Default : 8080 ]
  -o OPTION, --option OPTION
                        PyPhisher's template index [ Default : null ]
  --update, --no-update
                        Check for update (default: True)


  • Multi-platform (Supports most Linux)
  • 65 Website templates
  • Dual Tunneling (Ngrok and Cloudflare)
  • Easy to use
  • Possible error diagnoser
  • Built-in masking of URL
  • Custom masking of URL
  • Portable file (Can be run from any directory)
  • Get IP Address and many other details along with login credentials


  • Python(3)
  • PHP
  • Curl
  • Unzip
  • Wget
  • 100MB storage

If not found, all of the required packages will be installed on the first run

Tested on

  • Termux
  • Kali-Linux


  1. Run the script
  2. Choose a Website
  3. Wait sometimes for setting up all
  4. Send the generated link to the victim
  5. Wait for victim login. As soon as he/she logs in, credentials will be captured


Video Tutorial

PyPhisher Video


This tool is developed for educational purposes. Here it demonstrates how phishing works. If anybody wants to gain unauthorized access to someone's social media, he/she may try out this at his/her own risk. You have your own responsibilities and you are liable to any damage or violation of laws by this tool. The author is not responsible for any misuse of PyPhisher!

This repository is open source to help others. So if you wish to copy, consider giving credit!

Credits: HTR-Tech and JayKali

If this tool helped you, consider starting a repository. Your stars encourage me a lot!

Find Me on:

  • facebook
  • messenger
  • email
May 26, 2022


Hakin9 TEAM
Hakin9 is a monthly magazine dedicated to hacking and cybersecurity. In every edition, we try to focus on different approaches to show various techniques - defensive and offensive. This knowledge will help you understand how most popular attacks are performed and how to protect your data from them. Our tutorials, case studies and online courses will prepare you for the upcoming, potential threats in the cyber security world. We collaborate with many individuals and universities and public institutions, but also with companies such as Xento Systems, CATO Networks, EY, CIPHER Intelligence LAB, redBorder, TSG, and others.
Notify of

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Oldest Most Voted
Inline Feedbacks
View all comments
Tom Maher
Tom Maher
9 months ago

When I attempt to git clone, Kali asks for github username and password…

Luca Comellini
Luca Comellini
1 year ago

Congratulation for your good job, but what about MFA?
Most of the services you added requires MFA. Only stealing username and password is not enough to demonstrate that hackers can gain access to your account.
Think about Modlishka. Very powerful tool, but unusable today, that could grab the MFA token as well.
If you can add this feature, your tool should become the first one to use do demonstrate to people how simple is to gain access to everyone’s account.

Last edited 1 year ago by Luca Comellini
© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023