Hi everyone, today in this tutorial i will show you how to create a phishing page, great right ? ;)
OK lets jump right in! First you will need kali linux, Backbox or a pentest distro and a brain :p. We will need to do some background research first on are victim before we begin. Like if he/she is educated in phishing attacks, if your target is a regular person who doesn't know what an ip address is then your good! Lets get started by getting a gmail account and Logging in and click the Gear on the top, then Settings, In your Settings, go to the Accounts tab and Where it says Send Mail As:, click the Edit Info link next to the account you would like to update. In the box below Name:, type your “Facebook Support” and save changes, So now people will see Facebook support in there inbox. Now lets create the email that your going to send, here is a good template
OK lets jump right in! First you will need kali linux, Backbox or a pentest distro and a brain :p. We will need to do some background research first on are victim before we begin. Like if he/she is educated in phishing attacks, if your target is a regular person who doesn't know what an ip address is then your good! Lets get started by getting a gmail account and Logging in and click the Gear on the top, then Settings, In your Settings, go to the Accounts tab and Where it says Send Mail As:, click the Edit Info link next to the account you would like to update. In the box below Name:, type your “Facebook Support” and save changes, So now people will see Facebook support in there inbox. Now lets create the email that your going to send, here is a good template
In the subject heading put : Urgent: Your Facebook account needs your attention!
So this is where the fun begins we need to make a phishing link, there are a number of ways to do this. We are going to use Setoolkit to do this first make sure you have bleeding repos are enabled on kali before using set.
Type in option:
- Social-Engineering attacks
- Website attack vectors
- Credential harvester attack method
- Site cloner.
Before we enter anything in lets configure DMZ first, you need to go to your router control panel,
This is your default gateway in most cases 192.168.1.1 and go to (DD-WRT Routers) Nat/QoS then DMZ and for the DMZ host IP address you will put in the computers IP.
For example if your gateway is 192.168.1.1 then if you type the command [/list][/list]
ifconfig
in the terminal under your wlan0 or what ever interface is connected the network there will be “inet” next to 192.168.1.127.
Put your internal IP address for DMZ now your all set. Go back to setoolkit and DONT put in your host IP put in your external IP address which can find just by googling or go to whatismyip.com. Then setoolkit will ask you for the site to clone since this attack is aimed at Facebook so we will put in https://facebook.com/login.php. Once you configured everything it should look like this.
Final step we go back to Gmail and where it said “click here” highlight here and hyper link it and put in your IP address. Before you send the email make sure everything is working properly do that by putting your local IP address in your browser like so,
This test is inside the network to test outside connect to another WiFi hotspot or put in your external IP in the tor browser.
Now put in some random data and see the results on set.
Excellent are server is fully functioning!! Now its time to send the email to the victim. Once you sent the email its a good time to grab something to eat and wait. Usually if the person is active with there email you will get a quick response back. Once you have obtained the credentials you must login with the IP address of the same city and it helps to have the same ISP. Ensuring you will not have any problems change your browser to the same one they use for Firefox I recommend https://addons.mozilla.org/en-US/firefox/addon/random-agent-spoofer/ and make sure under headers everything is checked. you have now got control of the account! Thanks for taking the time to read this! I hope this helped.
How to Improve this Attack
Make a gmail with user name of notification and a bunch of random numbers and characters that way if the victim does want to see your email it will look like an automated response.
URL shortener
If you want to send out phishing links you can put in your IP address in https://goo.gl/or tiny URL https://tinyurl.com/
Trouble shooting
If you get
[!] ERROR: Unable to start Apache through SET
, or something similar just do this go to /usr/share/setoolkit/config/set_config and change "APACHE_SERVER=ON" to "APACHE_SERVER=OFF" and restart set.
If you IP comes up as spam or is black listed turn off your modem/router for up to an hour confirm that you have new IP and setup your web server again.
DMZ:
If you need help setting up DMZ click here.
What the email should look like:
(make sure to hyper link the Facebook login pic just in case.)
If I have made any mistakes please contact me or leave a comment and i will fix it immediately or if you need any help.
Do not forget to share our articles, it's the best support for us.
ConversionConversion EmoticonEmoticon