Today I am going to explain you how to make your own Phishing page without any sort of copy & pasting but just with a simple click.
First of all let me specify some key features of this Phishing tool :-
Defend the Human Attack Surface Don't just manage incidents, secure your riskiest employees with tailored security controls Schedule a demo Defend the Human Attack Surface Don't just manage incidents, secure your riskiest employees with tailored security controls Schedule a demo Defend. The Simple Phishing Toolkit includes a site scraper that can clone any Web page — such as a corporate Intranet or Webmail login page — with a single click, and ships with an easy-to-use phishing lure creator. Download phishing page maker tool shared files: Paypal Phishing page 2010+scam letter.rar from mediafire.com 191.33 KB, Combo Maker Tool.exe from mega.co.nz 722 KB. Gophish makes it easy to create or import pixel-perfect phishing templates. Our web UI includes a full HTML editor, making it easy to customize your templates right in your browser. Phishing Page Maker Tool Make Own Icon Button For Cockos Reaper Short Bytes: The security researchers at PhishLabs have uncovered a new type of Facebook phishing attack that uses the URL Padding technique. The tactic targets the mobile users and fools them by making the deceptive links look authentic. As a result, casual users end up visiting.
* Simple and easy tool which can be used even by a 10 years old boy.
*Create any fake page. For ex- Facebook, Gmail, Yahoo, Hotmail, etc.
Steps to create your own Fake Page:-
* Download Super Phisher here & Extract it.
Facebook Phishing Page Download
*Fill the Boxes
* In the [url of login box] Type that url which you want to make fake page
*2nd your password txt file Indrajeet’slogs.txt
*site to be redirected after login of victim
2) This is the Output folder where the fake page has been created.
3)These are the Fake pages which are created by the Super Phisher.
Thanks for reading this article. If u face any problem, feel free to ask.
Update :
This tool does not work properly now as it is outdated but let me share with you another tool using which you can create fake login page of popular websites like facebook, Instagram , Google etc.
Creating fake login page is called as phishing. In phishing , an attacker creates a look alike page of any popular website and sends it to the victim. When the victim enters his login info, the attacker gets the credentials.
Do note that it is illegal to it. and this article is for education purposes only.
You can use this tool called : Shell Phish . Using this tool you can create login page for almost all popular websites and then you can host it in any web hosting.
Usage of Shellphish for attacking targets without prior mutual consent is illegal. It’s the end user’s responsibility to obey all applicable local, state and federal laws. I and Developers of this tool assume no liability and are not responsible for any misuse or damage caused by this program.
Last Updated on March 10, 2021 by
Phishers are fake pages which are intentionally made by hackers to steal the critical information like identity details, usernames, passwords, IP address and other such stuff. As i mentioned intentional, which clearly means its illegal and its a cyber crime. Phishing is basically a social engineering technique to hack username and passwords by deceiving the legitimate users. Phishers are sent normally using spam or forged mails.
Note: This article is for educational purposes only, any misuse is not covered by Hacking loops or CME.
What is Phishing?
Phishing is basically derived from the word called Fishing which is done by making a trap to catch the fishes. Similarly in case of hacking, hackers make Phish pages (traps) to deceive the normal or unaware user to hack his account details. Phishing technique is advancing day by day, its really tough to believe that on what extent this technique is reached but this is always remains far away from normal internet users and most of hackers.
Most of hackers and computer geeks still believe that Phishing attempt can be easily detected by seeing the URL in address bar. Below are some myths that hacking industry still have about Phishing. I will mention only few because then article will become sensitive and major security agencies will flag my website for posting sensitive data. So i will only explain the facts, if you need the same you need to fill the form and give us assurance that you will not misuse it.
Myth’s about Phishing among Computer Geeks and Hackers
1. Almost each and every Hacker or computer Geek, thinks that Phishing attempt can be detected by just having a look on the URL. Let me tell you friends it was old days when you recognize Phishers by seeing URL’s. But nowadays recent development in Cross site scripting(XSS) and Cross site Script forgery has made it possible that we can embed our scripts in the URL of famous websites, and you must know scripting has no limitations. Below are some examples that you can do from scripting:
a. Embed a Ajax Keylogger into the main URL and user clicks on the URL, keylogger script will get executed and all the keystrokes of the user will get record.
b. Spoof the fake URL: If you are little bit good in scripting and web browser exploits recognition then this can be easily done. What you need to do you need to write a script which will tell web browser to open fake page URL whenever user opens some website like Facebook. Just you need to manipulate the host file and manipulate the IP address of that website from Host file(found in windows folder).
c. Simply retrieving the information saved in the web browser like saved passwords, and bookmarks etc. Just need to write a script which will explore the locations in Windows user profile (where actually the stored information of web browsers saved).
2. One biggest myth, when you enter the data into the fake page, it will show either some warning message or show login information is incorrect. Rofl, new phishers are bit smart, now they don’t show warning messages, when you login through fake page. They will actually login you into your account, and simultaneously at the back end they will steal your information using batch scripts.
So friends i think this is enough back ground about new phishing technologies. Let’s learn how to make a basic Phisher of any website in less than one or two minutes.
Steps to make your own Phisher:
1. Open the website Login or Sign in page whose phisher you want to make. Suppose you pick Gmail.
2. Right click to view the source and simultaneously open notepad.
3. Copy all the contents of the source into the notepad file.
4. Now you need to search for word action in the copied source code. You will find something like below:
| Manipulate action and method |
Now in this line you need to edit two things, first method and then action. Method Post is used for security purposes which encrypts the plain text, so we need to change it to GET.
Action field contains the link to next page, where it should go when you click on login or press enter. You need to change it to something.php (say lokesh.php).
How To Make Phishing Site
6. Now open the Notepad again and paste the below code in that:
Phishing Page Maker Tools
7. Location contains the next page URL, where you wish to send to user and passwords.html will contains the passwords.
8. Now save this file as lokesh.php as told in step number 4.
9. Now create an empty file and name it as passwords.html, where the password get stored.
10. Upload all the three file to any web server and test it.
Note: In case of facebook, it will show error after user login, for that you need to use tabnabbing trick.
Note: Always keep the extension correct, otherwise it will not work. So always use save as trick rather than save otherwise it will save files as lokesh.php.txt.
That’s all from my side today, I hope you all enjoyed this article..
Phishing Page Maker Download
If you have any issues ask me in form of comments..