Yes. You can do this forward linkknapping too: have your page push a navigation history frame (there is an API for this) on loading, detect the user hitting the back button, show phishing page. It is just how it works. Always keep an eye on the address bar when you’re entering credentials, or, even better, use a password manager that does it for you so you never accidentally type it into a phishing page.

I used to have a PoC on Github. I called it clickbaitjacking.