# techchipnet/camphish **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/techchipnet-camphish).** 4,542 stars · 1,239 forks · HTML · gpl-3.0 ## Links - GitHub: https://github.com/techchipnet/CamPhish - awesome-repositories: https://awesome-repositories.com/repository/techchipnet-camphish.md ## Topics `android-hacking` `camera-hacking` `gps` `gps-location` `gps-tracking` `hack` `hacking` `kali-linux` `penetration-testing` `techchip` `termux` ## Description CamPhish is a social engineering framework and phishing tool designed to capture webcam photos and GPS coordinates from remote devices. It uses web interfaces to request browser permissions, allowing it to retrieve device media and geographic location data. The project includes a local server tunneling tool that creates public internet links, making hosted phishing pages accessible to remote users. It also features a GPS location tracker that retrieves latitude and longitude coordinates and displays them on maps. The system manages the exfiltration of captured data to a backend server, where images and coordinate logs are saved to the local filesystem. It also provides utilities for the cleanup and deletion of these stored files. ## Tags ### Security & Cryptography - [Social Engineering Phishing](https://awesome-repositories.com/f/security-cryptography/social-engineering-phishing.md) — A social engineering framework that uses deceptive phishing pages to capture private device data. - [Media](https://awesome-repositories.com/f/security-cryptography/identity-access-management/credential-lifecycle-management/credential-security/credential-extraction-utilities/phishing-capturers/media.md) — Tricks users into granting browser permissions to capture webcam photos and GPS coordinates. - [Social Engineering Frameworks](https://awesome-repositories.com/f/security-cryptography/social-engineering-frameworks.md) — Provides a complete framework for deceiving users into disclosing media and location data. ### Part of an Awesome List - [Device Location Retrievers](https://awesome-repositories.com/f/awesome-lists/data/geographic-and-location/device-location-retrievers.md) — Retrieves latitude and longitude of a remote device using standard browser location APIs. ([source](https://github.com/techchipnet/CamPhish/blob/master/template.php)) - [Browser Location Retrievers](https://awesome-repositories.com/f/awesome-lists/data/geographic-and-location/device-location-retrievers/browser-location-retrievers.md) — Retrieves geographic coordinates via browser location services and displays them on a map. - [Client-Side Exfiltration Channels](https://awesome-repositories.com/f/awesome-lists/security/data-exfiltration/client-side-exfiltration-channels.md) — Implements client-side channels to transmit captured images and GPS coordinates to a remote backend. ### Mobile Development - [Camera Image Capture](https://awesome-repositories.com/f/mobile-development/mobile-capabilities/camera-integration/camera-feed-capture/camera-capture-controllers/camera-image-capture.md) — Captures images from a remote device's camera via a web interface for subsequent upload. ([source](https://github.com/techchipnet/CamPhish/blob/master/OnlineMeeting.html)) - [Web-Based Camera Captures](https://awesome-repositories.com/f/mobile-development/mobile-capabilities/camera-integration/camera-feed-capture/camera-capture-controllers/camera-image-capture/web-based-camera-captures.md) — Captures photos from a remote device's webcam by tricking users into granting browser permissions. ### Networking & Communication - [Local Server Tunnels](https://awesome-repositories.com/f/networking-communication/local-server-tunnels.md) — Provides a tunnel to expose the locally hosted phishing server to the public internet. - [Target Location Tracking](https://awesome-repositories.com/f/networking-communication/location-services/target-location-tracking.md) — Pinpoints the physical location of a remote target device using browser-based geolocation services.