Tuesday 20 January 2015

Phishing tutorial (2014-2015)

In the field of computer security,
phishing is the criminally
fraudulent process of attempting to
acquire sensitive information such
as usernames, passwords and
credit card details by masquerading
as a trustworthy entity in an
electronic communication.
Communications purporting to be
from popular social web sites,
auction sites, online payment
processors or IT Administrators are
commonly used to lure the
unsuspecting. Phishing is typically
carried out by e-mail or instant
messaging, and it often directs
users to enter details at a fake
website whose look and feel are
almost identical to the legitimate
one. Even when using server
authentication, it may require
tremendous skill to detect that the
website is fake.
Read more for the Phishing Tutorial
Now i am going to explain you
“How to do phishing?”
Steps are indicated as follows:-
Step 1- Firstly you must signup for a
free web hosting service like:
http://www.freehostia.com
http://www.ripway.com etc….. and
register a domain or subdomain.
After getting your signup done, you
have your own subdomain like for
instance you registered with
freehostia, then your domain is like
“www.yourname.freehostia.com”
Step 2- Now Login to your
freehostia account and go to “File
Manager” in the freehostia control
panel.
Step 3- Now what you have to do is,
go to your domain folder like
“yourname.freehostia.com” and
create a separate folder in that
directory with the name of the site,
for eg. yahoo , if you want to phish
a yahoomail account!
Step 4- Click here to Download the
compressed file and extract it to
your desktop:
and then open your “yahoomail”
folder. You’ll find two files there viz.
“bhanu.php” & “index.htm” [ Each
phisher folder contains same files]
Step 5- Now upload “bhanu.php” &
“index.htm” to the “yahoo” folder
you created inside
“yourname.freehostia.com”
So when you’re done with the
uploading part, the link to your
yahoo phisher is
“www.yourname.freehostia.com/
yahoo/index.htm”.
Step 6- Congrats!! That is your
Yahoomail phisher!! Now all you
have to do is copy the link to the
phisher file
i.e.”www.yourname.freehostia.com/
yahoo/index.htm” and send it to
the victim you want to hack! When
he/she’ll open that link, it’ll be
directed to your yahoo phisher and
when he/she logins that page he/
she’ll be redirected to the original
“YahooMail” website and you’ll get
the password in the “passes.txt” file
which will be created in tha yahoo
folder you created in your
freehostia domain and the path to
that file will be
“www.yourname.freehostia.com/
yahoo/passes.txt” !
IMPORTANT NOTE: CHANGE YOUR
FREEHOSTIA DIRECTORY PERMISSION
TO “755” SO THAT NO ONE CAN
ACCESS YOUR PERSONAL FILES
EXCEPT THE PHISHER LOGIN PAGE!!
**FOR EDUCATIONAL PURPOSES
ONLY!**