What is phishery and how does it work to steal credentials?

Phishery is an SSL-enabled HTTP server that phishes for credentials via Basic Authentication. It works by generating a malicious Word document containing a URL template that, when opened, triggers an HTTPS request to the attacker's server. The server responds with a 401 Unauthorized status and a `WWW-Authenticate: Basic` header, causing the victim's application to display a login prompt. The entered credentials are Base64-encoded and sent to the server, where they are recorded.