Harun

Nvm! I'm just being an idiot here. I just need to use programs like wamp/xamp to host my fake web page on my localhost

Thank you, I've have set it up correctly, Although the spoof sort of works because it allows me (the victim) to gain access to other websites other than 'facebook.com', I'm just wondering how I can implement my own php/html script as the 'fake website' so whenever the victim is trying to gain access to facebook.com, they end up visiting my malicious website. Hence once they attempt to login I'm able to capture their passwords.

Hi, I just checked the tutorials on how the PacketSquirrel works and what it does and I've decided to purchase one myself to have a play around with it. I've captured traffic on the device, recorded and analysed the TCP dumps on WireShark. The only part I'm struggling on is how to get the dns spoof to work. I have switched to Arming mode and edited the 'spoofhost' file to 'facebook.com' with the ip address being my victim's ip address on the Windows machine. I'm wondering how it's possible to create a fake web page and harvest the victim's usernames and passwords via my fake facebook page and have them redirected back to the original facebook login