Jump to content

SEToolkit cloned website can be viewed over internet, but credentials don't get stored.


Recommended Posts

I've started messing with SEToolkits cloned website / credential harvester today and I got it working fine locally. For instance, when the credentials are harvested, the victim computer gets redirected to the real website and I can see the credentials have been saved in the text file. However, I tried doing the same over the internet and ran into some problems. I have forwarded port 80 on the router for the private IP that is hosting the Apache page on my Kali box and I am able to navigate to my public IP and get the cloned page, however, once I put in the credentials and submit, the website hangs and does not redirect to the real page, nor do the credentials get stored.

Does anyone know why the cloned site would show, but not redirect or store the credentials? Any help would be much appreciated. Thanks.

Link to comment
Share on other sites

port foward 80 and 443, just to be safe(for https) but I would check the SET config documentation on if they need settings for an external IP or forwarder setup vs a local IP setup. May be a reason it only works locally.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...