SinisterRaccoon Posted August 11, 2012 Share Posted August 11, 2012 hey all! ok, so i was wondering if anyone here had some good phish pages to share? and also some direction in learning to create my own. been awhile since ive done coding, but now im looking to refresh and dig deeper. any help is appreciated! Link to comment Share on other sites More sharing options...
mubix Posted August 11, 2012 Share Posted August 11, 2012 I would start with SET (Social Engineering Toolkit) and look at how it does things. There is also SEF (Social Engineering Framework), MetaPhish, and Spear Fishing Toolkit. I think there is also one called FBPwn but I think it's just Java Applet + Facebook. Link to comment Share on other sites More sharing options...
MDKwlan Posted August 11, 2012 Share Posted August 11, 2012 Hey Raccoon. Mubix pretty much hit the nail on the head when it comes to phishing tools. SET http://www.social-engineer.org/framework/Computer_Based_Social_Engineering_Tools:_Social_Engineer_Toolkit_(SET) Mainly for doing phishing attacks you need to get use to what tools you are using (Like anything else). So there's no easy mode 1 click with this (Or haven't found one yet...) Also FBpwn's link http://code.google.com/p/fbpwn/ Enjoy mate. Link to comment Share on other sites More sharing options...
loozr Posted August 11, 2012 Share Posted August 11, 2012 I would recommend you to try create your own site. Me self I have NO coding experience besides a little logic thinking, and sites like facebook is rather simple to clone. I have maybe been doing this myself for a couple of days now, and feel I have learned something already. You just rightclick and choose save entire page, then you just edit the .htm(l) file in an editor(i.e. notepad++) and search for action. You will find a link right after action, replace that link with i.e. error.php(which is your php script that posts information to a log file). Then a little further down the code you will find something like this for the username/email <input type="text" class="inputtext" name="email" id="email" value="" tabindex="1" />[/CODE]Here you replace name="email" to name="name". (at least with the error.php that I'm using.)And for the password you really don't have to change in this example, as it should be name="pass"[CODE]<input type="password" class="inputtext" name="pass" id="pass" tabindex="2" />[/CODE]After that you just save the htm(l) file and upload it(and the folder with the files) to your pineapple and test it out.To make it clear, this might be different with other post scripts than my error.php. But I guess you figured that out since it seems you have been coding before.As the reason why you should try doing this yourself is that you learn a lot about the webpages while screwing around in the code, and a lot of pages is quite more difficult than FB. I would recommend you to try do it manually first, and if you are unsuccessful, THEN you can use tools like SET and others.Hopefully you understand what I have written, and hopefully my directions are correct. ;) Link to comment Share on other sites More sharing options...
potato Posted August 11, 2012 Share Posted August 11, 2012 (edited) I might whip something up in Dreamweaver while im waiting for my pineapple to ship, Has anyone got apache and php working on the pineapple or do we need an external host? Edited August 11, 2012 by cscash241 Link to comment Share on other sites More sharing options...
WatskeBart Posted August 11, 2012 Share Posted August 11, 2012 I might whip something up in Dreamweaver while im waiting for my pineapple to ship, Has anyone got apache and php working on the pineapple or do we need an external host? Pineapple runs uhttpd with php4 ;) Link to comment Share on other sites More sharing options...
mreidiv Posted August 11, 2012 Share Posted August 11, 2012 hey all! ok, so i was wondering if anyone here had some good phish pages to share? and also some direction in learning to create my own. been awhile since ive done coding, but now im looking to refresh and dig deeper. any help is appreciated! Have you checked out this thread Link to comment Share on other sites More sharing options...
potato Posted August 12, 2012 Share Posted August 12, 2012 (edited) removed Here is one for Facebook, the emails and passwords will be stored in facebook-logins.txt Edited October 20, 2013 by Mr-Protocol Link to comment Share on other sites More sharing options...
SinisterRaccoon Posted August 12, 2012 Author Share Posted August 12, 2012 Thx, great help here! those sites were full of knowledge:) Link to comment Share on other sites More sharing options...
waynead Posted August 12, 2012 Share Posted August 12, 2012 (edited) removed Here is one for Facebook[/url], the emails and passwords will be stored in facebook-logins.txt how can i dl it without installing their dl 'manager' - i just want the bare naked zip..... Edited October 20, 2013 by Mr-Protocol Link to comment Share on other sites More sharing options...
WatskeBart Posted August 12, 2012 Share Posted August 12, 2012 (edited) how can i dl it without installing their dl 'manager' - i just want the bare naked zip..... Use the link that says: removed Edited October 20, 2013 by Mr-Protocol Link to comment Share on other sites More sharing options...
kdmcshane Posted October 20, 2013 Share Posted October 20, 2013 I would recommend you to try create your own site. Me self I have NO coding experience besides a little logic thinking, and sites like facebook is rather simple to clone. I have maybe been doing this myself for a couple of days now, and feel I have learned something already. You just rightclick and choose save entire page, then you just edit the .htm(l) file in an editor(i.e. notepad++) and search for action. You will find a link right after action, replace that link with i.e. error.php(which is your php script that posts information to a log file). Then a little further down the code you will find something like this for the username/email <input type="text" class="inputtext" name="email" id="email" value="" tabindex="1" /> Here you replace name="email" to name="name". (at least with the error.php that I'm using.)And for the password you really don't have to change in this example, as it should be name="pass" <input type="password" class="inputtext" name="pass" id="pass" tabindex="2" /> After that you just save the htm(l) file and upload it(and the folder with the files) to your pineapple and test it out.To make it clear, this might be different with other post scripts than my error.php. But I guess you figured that out since it seems you have been coding before. As the reason why you should try doing this yourself is that you learn a lot about the webpages while screwing around in the code, and a lot of pages is quite more difficult than FB. I would recommend you to try do it manually first, and if you are unsuccessful, THEN you can use tools like SET and others. Hopefully you understand what I have written, and hopefully my directions are correct. I attempted to follow these instructions exactly when saving other webpages such as "amazon" (sign in page) and I searched for the correct places to change by searching "tabindex" in Notepad++ For some reason, the pineapple would load my facebook.htm but not the amazon.htm? Are there certain sites you can't copy and load up in DNS spoofing or is it because the amazon.htm and files that come with it are too large? Link to comment Share on other sites More sharing options...
Recommended Posts