Ever heard about Phishing page and Phishing Attack? Today I’m going to show you how to create a Phishing page & How to do Phishing Attack step by step full tutorial. So, do you know
How to hack facebook.,gmail., twitter.,or yahoo using phishing attack??? Here you can see how to hack facebook using phishing attack with step by step procedure.using kali linux this is best tutorial ever you tried because normaly you will download source page and send to victim but now a days hosting wont allows you to upload vulnerable files so that you cant upload any vulnerable files. Phishing is a most popular technique used for hacking passwords and stealing sensitive information like credit cards, banking username & passwords etc. Phishing attack is a process of creating a duplicate copy or a clone of a reputed. Although we make a phishing page of Facebook in this tutorial, it can be used to make a phishing page of any website. So now let’s phish. Open your browser, go to the Facebook website, Right click on the webpage and click on “ view page source”. The source of the web page is displayed in the browser. In this tutorial i’m going to explain how to make an android application with facebook phishing method, so you can get the username and password of each person who login to facebook using this app. Note: This post is updated with new undetectable phishing files. Actually, phishing is the way for stealing someone's rare detail like password of any account. In this phishing attack method attackers simply create a clone website of any website like Instagram, Facebook, Gmail, Twitter, etc. In my previous post, I explain the easy method how to hack facebook account?
1 What is Phishing Page?
1.3 How to make a php script?
This Tutorial is for Education Purpose only!!!
Phishing is a technique by which we create a similar web page(Phishing Page) to the original one. In this technique, we copy original website page code and do some changes to it. Then upload it to the hosting and access it from anywhere.
Here is the list of things that you will learn from this post
How to copy the code from the original website
How to do some changes in this code
How to make a php script
How to upload it to the Hosting
and a lot more !!!
Umm!!! Interested to read further ?? I’m sure you will like this tutorial and you want this tutorial. ?
DON’T MISS:- web.whatsapp.com Hack Tutorial Step by Step Explanation
How to copy the code from the original website
Open a website of which Phishing page do you want then press ctrl+U to open its source code file. For ex:- I’m copying the code of Facebook.com and then I will make a facebook phishing page. Well, this is what which you want …Right!! ?
So I’m copying the source code from Fcaebook.com by pressing ctrl+U. You can see here the source code from Facebook.com is shown here.
The only thing you have to do is to select all code and then copy this code by pressing ctrl+A and then ctrl+C and then open a notepad file and paste it there by pressing ctrl+V.
You can see here I pasted down the whole code from website to my notepad file.
How to do some changes in this code?
Now, you have to find this line by pressing ctrl+F and type this whole line there and press Enter.
Let’s do some changes, You can see the path of Facebook is shown here. Copy this whole path and replace it with login.php and also change the method from post to get. and save this notepad file with the name fb.html.
How to make a php script?
Phishing Page For Facebook
Do you know Php Language? Well, If you don’t know anything about Php Language then no problem but in the future, I recommend you to learn this language. So, I’m giving you a PHP code which will save the username password which is entered on our fb.html page. and it also saves different username and password to a new line. When the victim enters his username and password to it then this PHP script will redirect that user to the original Facebook page.
Just copy this script and paste it down to your notepad file and then save this file with a name hack.php
One more thing creates a blank notepad file with a logs.txt name on which victim’s usernames and password will save.
Now, you have three notepad files one is none.html and second is login.php and third is logs.txt. Just copy all files and save it to a new folder.
How to upload Facebook Phishing Page to the Hosting?
Let Understand what is Hosting and Domain. To open a website we must have a domain, hosting. So, Domain is the name of our website. For ex :- I have Hackingblogs.com This is my domain. and the location where this domain has parked this location is known as hosting.
Still Confused!! Let’s Understand with an Example, Whenever we open a new store then we have to decide two things
Store’s Name
Land/room
Similarly, For opening a website we need Domain for a website which is unique. and the second one is the land which is hosting on the Internet. Hosting and Domain are paid and some websites also provide this hosting and domain at free of cost.
Here’s the list of Free hosting providers website.
and many more…
I’m using 000webhost here. So, open this website and do sign up there. In the field of a website, name leaves it blank.
and now you have to take a domain which looks similar to Facebook. If you don’t know about creating a similar word the same as the original one. Check my earlier post.
I’m sharing some website link which provides free domains.
You can use any of them to register a domain for free. Now, come to the hosting. You can use any of the websites. Now, the post is becoming so long so, at 29 April I will upload Its second part in which I will show you how to attach domain and hosting and also tell some tricks which nobody tells you. ? So, do subscribe to the new post. Good Bye ?
This is the Second Part:- How to Upload a Phishing page on Hosting | Phishing Page Part 2
In this tutorial, we’re going to take a close look at how to setup a phishing page to harvest usernames and passwords that can be used to hack other users’ Facebook accounts. However, and I can’t stress this enough, this knowledge should never be used to attack others in the real world. It simply isn’t legal, and it isn’t moral, either. If you’ve ever had your username or password stolen, you know how bad it feels when others have violated your privacy.
If you’re reading this with the hopes of learning how to gain access to countless users’ Facebook credentials, I should instead refer you to philosophical ideas on morality. Keeping that in mind, there is a lot of value, especially for aspiring hackers, in understanding how phishing works. Not only will it help you avoid mistakes that threaten your security and privacy, but it will also help you spot fishy phishing sites.
What is Phishing?
Facebook Phishing Tutorial Free
Phishing is the process of setting up a fake website or webpage that basically imitates another website. Attackers frequently employ this method to steal usernames and passwords. Most frequently, the process works as follows:
A user clicks on a bad link to a phishing site. Believing they are viewing the intended web page, they enter their login credentials to access the web service. There’s just one problem. The user, who is really the attacker’s victim, actually entered their private information into a hacker’s website. And now the hacker has their login credentials! In Facebook, this may not be as consequential as another website, like online banking.
However, the hacker can now wreak ungodly amounts of havoc on a person’s social life. If it happens to be a business’s Facebook profile, they can damage their business. Today, however, we are going to setup an imitation Facebook login page to show you just how easy it is to start phishing. Let’s take a closer look at the steps required.
Pull up Facebook.com in your browser. Then, right click on the website’s login page. You should see an option along the lines of “view source page.” Click on this option and you should be able to view the code behind this page.
Go ahead and dump all of the page’s source code into Notepad (or your operating system’s best simple text editor).
If using Notepad, hit ctrl f (which is the find hotkey) and search for action.
You should see a line that looks like this: action=”https://www.facebook.com/login.php?login_attempt=1″
Delete everything contained in the quotations, and instead fill the quotes with post.php. Now it should read action=”post.php”
Save this file somewhere on your computer with the file name of index.htm. Omit the final period from the filename. This is going to become your phishing page.
Next, create a new notepad document with the name of post.php. Omit the final period from the filename. Copy and paste the following code into this document, and remember to save it:
At this point, you should now have two files saved: index.htm and post.php.
Next, this code actually needs to be uploaded to a web hosting service. There are free hosting providers, but I wouldn’t recommend you actually post this code. Instead, it would be better to try this at home on your own webserver. However, for the rest of the tutorial, we’ll be using Bluehost.
After you have signed up for an account, browse to the control panel, and then to file manager.
Once the window opens, go to publick_html.
Delete default.php, and then upload index.htm and post.php.
Next, click on a preview of index.htm. As you’ll notice, it should look nearly identical to the Facebook login page.
The URL of this page is what needs to be linked to in an attack. Sometimes attackers imbed this false link on other websites, forums, popup ads, and even emails.
Now go back to the file manager and public_html. There should be a file labeled username.txt.
Open this file and you should be able to see login credentials that have been entered by a test user.
Facebook Phishing Tutorial Google
Final Thoughts
It really is a simple matter of copying the code from the Facebook login screen, adding some php code, and then setting up a dummy website. Again, don’t try this in the real world, because the consequences could be terrible. However, in a home environment on your own web server, this tutorial provides great insight into how attackers phish for usernames and passwords.