Share
## https://sploitus.com/exploit?id=MSF:POST/WINDOWS/GATHER/CREDENTIALS/GADUGADU/
<!DOCTYPE html>
<html>
<head>
	<meta charset="UTF-8" />
	<meta content="" name="csrf-token" />
	<meta content="width=device-width, initial-scale=1" name="viewport" />
	<title>Lightspeed System - Web Access</title>
	<link rel="stylesheet" href="/css/access/access.css" type="text/css" />
	<link rel="icon" href="/images/favicon.ico" type="image/x-icon" />
</head>

<script type='text/javascript'>
	window.onload = function(){
		var form = document.getElementById("login_form");
		document.getElementById("submit_link").addEventListener("click", function(){
			form.submit();
		});
	};

	function enter_submit(e) {
		if (e && e.keyCode == 13) {
			var form = document.getElementById("login_form");
			form.submit();
		}
	}
</script>

<body>
	<div class="page-icon">
		<div class="page-icon--img page-icon--imgAccess">
		</div>
	</div>

	

	<div class="strip"><h1>Captive Portal</h1>
	</div>

	<div>
		<p class="text--blueGray">Please login to browse the internet.</p>
	</div>

	

	<div class="override">
		<form id="login_form" class="form" action="/access/portal" method="post">
			<span onkeyup="enter_submit(event);">
				<select name="auth_source_id"><option value="3">AD</option><option value="1">local users</option></select>
				<input type="hidden" name="id" value="R04NDP0ENZ26W26Z7BKNXEAYT22J1QHX" />
				<input type="text" name="username" placeholder="Username" />
				<input type="password" name="password" placeholder="Password" />
			</span>
			<a id="submit_link" class="button button--blue" href="#">Login</a>
			<br/><br/>

			

			<div class="signinForm-options l-flex l-flex--vAlignBaseline">
				<div class="l-flex-item--allotWidth">
					<section class="signinSSOButtons signinSSOButtons--noAnimation">
						
					</section>
				</div>
			</div>
		</form>
	</div>

	
</body>
</html>