Tuesday, May 3, 2011

Phishing Tutorial:Step By Step Explained


What is Phishing ?

In the field of computer security, phishing is the criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords and credit card details by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites
, auction sites, online payment processors or IT Administrators are commonly used to lure the unsuspecting. Phishing is typically carried out by e-mail or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Even when using server authentication, it may require tremendous skill to detect that the website is fake.


How To Do Phishing ?

STEP 1:Firstly U Must Signup For A Free Web Hosting Service Like:
www.freehostia.com
www.ripway.com etc.....


And Register A Domain Or Subdomain.
After Getting Your Signup Done, You Have Your Own Subdomain Like For Instance You Registered With Freehostia,
Then Your Domain Is Like "Www.Yourname.Freehostia.Com"

STEP 2:
Now Login To Your Freehostia Account And Go To "File Manager" In The Freehostia Control Panel.
STEP 3:Now what you have to do is, go to your domain folder like "yourname.freehostia.com" and create a seperate folder in that directory.with the name of the site, for eg. Gmail , if you want to phish a gmail account!

STEP 4:
Now click here to Download and extract the file "phishers created by jafar.rar" to your desktop. And then open your "gmail" folder. You'll find two files there viz. "jafar.php" & "index.htm" (each phisher folder contains same files)


STEP 5:
Now upload "jafar.php" & "index.htm" to the "gmail" folder you created inside "yourname.freehostia.com"


So when you're done with the uploading part, the link to your gmail phisher is "www.yourname.freehostia.com/gmail/index.htm".

STEP 6:
Congrats!! That is your gmail phisher!! Now all you have to do is copy the link to the phisher file i.e. "www.yourname.freehostia.com/gmail/index.htm"

And send it to the victim you want to hack! When he/she'll open that link, it'll be directed to your gmail phisher and when he/she logins that page
He/she'll be redirected to the original "gmail" website and you'll get the password in the "jafar.txt" file which will be created in the gmail folder. You created in your freehostia domain and the path to that file will be "www.yourname.freehostia.com/gmail/jafar.txt" !


IMPORTANT NOTE:
CHANGE YOUR FREEHOSTIA DIRECTORY PERMISSION TO 755 SO THAT NO ONE CAN
VIEW YOUR PERSONAL FILES EXCEPT THE PHISHER!!

**HAPPY PHISHING**.

No comments: