Ready to help

Can I use Push to detect phishing tools like EvilNoVNC and Evilginx?

Yes. The Push browser agent can detect when employees visit websites that are using phishing toolkits such as EvilNoVNC and Evilginx.

These tools can mimic legitimate login screens in order to steal credentials and bypass MFA.

You can enable Phishing tool detection on the Controls page of the Push admin console.

In order to consume detected events, you will need to consume a webhook event from Push via your SIEM or similar platform.

Learn more about how Push can help you detect and prevent phishing attacks in this related article.