GitPhish is a security assessment tool designed to conduct GitHub's device code authentication flow, featuring an authentication server, automated landing page deployment, and an administrative interface. It captures authentication tokens and provides real-time monitoring through a web-based dashboard, utilizing a Flask-based server and SQLite for data storage. The tool supports various deployment templates and requires specific configurations, including GitHub Personal Access Tokens for operation.