gophish/go.mod

module github.com/gophish/gophish

go 1.13

require (
	bitbucket.org/liamstask/goose v0.0.0-20150115234039-8488cc47d90c
	github.com/NYTimes/gziphandler v1.1.1
	github.com/PuerkitoBio/goquery v1.5.0
	github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 // indirect
	github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d // indirect
	github.com/emersion/go-imap v1.0.4
	github.com/emersion/go-message v0.12.0
	github.com/go-sql-driver/mysql v1.5.0
	github.com/gophish/gomail v0.0.0-20200818021916-1f6d0dfd512e
	github.com/gorilla/context v1.1.1
	github.com/gorilla/csrf v1.6.2
	github.com/gorilla/handlers v1.4.2
	github.com/gorilla/mux v1.7.3
	github.com/gorilla/securecookie v1.1.1
	github.com/gorilla/sessions v1.2.0
	github.com/jinzhu/gorm v1.9.12
	github.com/jordan-wright/email v4.0.1-0.20200824153738-3f5bafa1cd84+incompatible
	github.com/jordan-wright/unindexed v0.0.0-20181209214434-78fa79113c0f
	github.com/kylelemons/go-gypsy v0.0.0-20160905020020-08cad365cd28 // indirect
	github.com/mattn/go-sqlite3 v2.0.3+incompatible
	github.com/oschwald/maxminddb-golang v1.6.0
	github.com/sirupsen/logrus v1.4.2
	github.com/ziutek/mymysql v1.5.4 // indirect
	golang.org/x/crypto v0.0.0-20200128174031-69ecbb4d6d5d
	golang.org/x/time v0.0.0-20200416051211-89c76fbcd5d1
	gopkg.in/alecthomas/kingpin.v2 v2.2.6
	gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405
)
Creating go.mod and go.sum files to establish Gophish as a Go module. 2020-02-03 03:44:25 +00:00			`module github.com/gophish/gophish`

			`go 1.13`

			`require (`
			`bitbucket.org/liamstask/goose v0.0.0-20150115234039-8488cc47d90c`
			`github.com/NYTimes/gziphandler v1.1.1`
			`github.com/PuerkitoBio/goquery v1.5.0`
			`github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 // indirect`
			`github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d // indirect`
Updating the modules used for IMAP and email support $ go get -u github.com/jordan-wright/email $ go build $ go mod tidy 2020-06-17 01:10:12 +00:00			`github.com/emersion/go-imap v1.0.4`
			`github.com/emersion/go-message v0.12.0`
Creating go.mod and go.sum files to establish Gophish as a Go module. 2020-02-03 03:44:25 +00:00			`github.com/go-sql-driver/mysql v1.5.0`
Implement SSRF Mitigations (#1940) Initial commit of SSRF mitigations. This fixes #1908 by creating a *net.Dialer which restricts outbound connections to only allowed IP ranges. This implementation is based on the blog post at https://www.agwa.name/blog/post/preventing_server_side_request_forgery_in_golang To keep things backwards compatible, by default we'll only block connections to 169.254.169.254, the link-local IP address commonly used in cloud environments to retrieve metadata about the running instance. For other internal addresses (e.g. localhost or RFC 1918 addresses), it's assumed that those are available to Gophish. To support more secure environments, we introduce the `allowed_internal_hosts` configuration option where an admin can set one or more IP ranges in CIDR format. If addresses are specified here, then all internal connections will be blocked except to these hosts. There are various bits about this approach I don't really like. For example, since various packages all need this functionality, I had to make the RestrictedDialer a global singleton rather than a dependency off of, say, the admin server. Additionally, since webhooks are implemented via a singleton, I had to introduce a new function, `SetTransport`. Finally, I had to make an update in the gomail package to support a custom net.Dialer. 2020-08-20 14:36:18 +00:00			`github.com/gophish/gomail v0.0.0-20200818021916-1f6d0dfd512e`
Improve the Performance of Sending Emails (#1753) Adding the ability to cache campaigns on maillogs to greatly improve generation time (and, by extension, sending speed and memory usage). 2020-03-01 02:19:54 +00:00			`github.com/gorilla/context v1.1.1`
Creating go.mod and go.sum files to establish Gophish as a Go module. 2020-02-03 03:44:25 +00:00			`github.com/gorilla/csrf v1.6.2`
			`github.com/gorilla/handlers v1.4.2`
			`github.com/gorilla/mux v1.7.3`
			`github.com/gorilla/securecookie v1.1.1`
			`github.com/gorilla/sessions v1.2.0`
			`github.com/jinzhu/gorm v1.9.12`
Updated github.com/jordan-wright/email dependency 2020-08-24 18:15:16 +00:00			`github.com/jordan-wright/email v4.0.1-0.20200824153738-3f5bafa1cd84+incompatible`
Creating go.mod and go.sum files to establish Gophish as a Go module. 2020-02-03 03:44:25 +00:00			`github.com/jordan-wright/unindexed v0.0.0-20181209214434-78fa79113c0f`
			`github.com/kylelemons/go-gypsy v0.0.0-20160905020020-08cad365cd28 // indirect`
			`github.com/mattn/go-sqlite3 v2.0.3+incompatible`
			`github.com/oschwald/maxminddb-golang v1.6.0`
			`github.com/sirupsen/logrus v1.4.2`
			`github.com/ziutek/mymysql v1.5.4 // indirect`
			`golang.org/x/crypto v0.0.0-20200128174031-69ecbb4d6d5d`
Initial Implementation of a Password Policy (#1867) This PR adds the initial work to implement a password policy as defined in #1538. Specifically, this implements the following * Rate limiting for the login handler * Implementing the ability for system admins to require a user to reset their password * Implementing a password policy that requires passwords to be a minimum of 8 characters * Removes the default password (gophish) for admin users to instead have the password randomly generated when Gophish first starts up * Adds a password strength meter when choosing a new password Fixes #1538 2020-06-20 03:03:51 +00:00			`golang.org/x/time v0.0.0-20200416051211-89c76fbcd5d1`
Creating go.mod and go.sum files to establish Gophish as a Go module. 2020-02-03 03:44:25 +00:00			`gopkg.in/alecthomas/kingpin.v2 v2.2.6`
Improve the Performance of Sending Emails (#1753) Adding the ability to cache campaigns on maillogs to greatly improve generation time (and, by extension, sending speed and memory usage). 2020-03-01 02:19:54 +00:00			`gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405`
Creating go.mod and go.sum files to establish Gophish as a Go module. 2020-02-03 03:44:25 +00:00			`)`