🎣 Concept / 概念

DownGuide is a lightweight web framework designed for Authorized Security Simulations (Red Teaming / Phishing Drills).
DownGuide 是一个轻量级 Web 框架,专为授权安全演练(红队/钓鱼演习)设计。

It simulates the “Download Landing Page” pattern often used in social engineering attacks. By guiding the user through a realistic download flow, security teams can measure how many employees are susceptible to running untrusted executables.
它模拟了社会工程学攻击中常用的“下载引导页”模式。通过引导用户完成逼真的下载流程,安全团队可以评估有多少员工容易受到运行不受信可执行文件的影响。

⚠️ Disclaimer: This tool is for educational and authorized testing purposes only. Do not use scanning or targeting without explicit permission.
⚠️ 免责声明:本工具仅供教育和授权测试使用。严禁在未经许可的情况下对目标进行扫描或攻击。

⚙️ How It Works / 工作原理

The framework sets up a deceptive “Software Center” or “Document Viewer” page.

  1. Lure: User clicks a link in a simulation email.
  2. Guide: The page detects the user’s OS (Mac/Windows) and guides them to “Update Component” or “Download Viewer”.
  3. Track: Logs whether the user clicked the download button, completing the “Click Rate” metric for the simulation report.

🛡️ Usage for Defense / 防御用途

Corporate Drills / 企业演练

Deploy DownGuide internally to test if employees verify URL signatures before downloading “Required Security Updates”.

Feature Customization

  • Auto-Redirect: Redirects to a safe “You’ve been caught!” education page after the click.
  • User-Agent Targeting: Display different payloads for Mobile vs Desktop.

Use this to build a stronger human firewall.
利用此工具构建更强大的人类防火墙。