Phishing: EvilnoVNC vs. Reverse Proxy

EvilnoVNC is an open-source tool that is frequently used in security audits and for so-called red team operations. It is a web-based VNC (Virtual Network Computing) that allows a user to control a victim's graphical user interface via the internet in a browser.
The name ‘EvilnoVNC’ comes from the fact that it was developed specifically for use in security-related scenarios to simulate attacks. It can be used to stream the original website to a victim via a phishing website without them noticing that they are working in a VNC stream. This way, all traffic can be read and 2FA can be bypassed by reading the victim's traffic.
Phishing using HTTP reverse proxies is a similar technique for carrying out successful phishing attacks, but EvilnoVNC offers a few minor advantages.

Advantages of EvilnoVNC Over a Simple Reverse Proxy

• The original website could theoretically detect a reverse proxy, but not streamed content with EvilnoVNC.
• All actions can be observed graphically in real time.