Latest Facebook Phishing Hack 2016

Latest Facebook Phishing Hack 2016

There are many facebook phishing tutorials on the internet but they don't work properly or stops after few days. Because of the growing IT Security System.

The most common problems faced by the people while developing phishing pages is that the page is blocked by the web hosting sites and account is terminated then and there. And some of the web browser detects scam pages.


Features of this phishing trick :

• Undetectable by the browser
• Undetectable by the web hosting services
• Responsive ( works with both mobile and desktop )
• Url Masking

Warning & Disclaimer: Making a phishing page is not illegal, but using a phishing page is illegal. This tutorial is just to show you, “How to create phishing page?”. If you use this to hack anyone account, then WE ARE not responsible for it. Do anything on your own risk.

Sections

• Download the Attachment file, Size:579 kb (Click here to download) or Alternate download
• Sign up to Free web host and upload the files
• URL masking/hiding
• Responsive Demonstration

Step 1 :-  Download the “responsive-facebook.zip” file from here.

There will be 9 files as follow :-

• data.php
• data1.php
• index.php
• Mobile_Detect.php
• desktop.jpg
• follow.jpg
• login.jpg
• desktop_files(folder)
• users.txt

See Screen Shot Below.

Step 2 :-  Sign up to Free web host and upload the files.

I prefer www.000webhost.com

Go to: https://www.000webhost.com/free-website-sign-up and fill out the information needed and click on Get Free Hosting and then complete the sign up process.


After the sign up process, Verify your email then you will see the Active status on your Account dashboard.

Click on Go to Cpanel.



Then under FILES section click Change FTP Password.

Then enter the new FTP password and click Change.


Then under Files Manager section click First File Manager.


Then open public html folder and delete files present in it and click on Upload.


Below “Archive” section on the right side click on “Choose file“.

Select the downloaded zip file Step 1 (responsive-facebook.zip).

Click on the “green tick”.


Done!!!, That’s it phishing page is ready.

Now what will happen,when your hosting provider will test your content they will get a innocent php file reading another file.and when they try will to access “login.jpg” file they will get an invalid/corrupted image.

IMPORTANT

The default address will not open the phishing page you have to access your URL with this id at end (/?id=facebook).

This Unique Url is important for bypassing security check and i set the default id as facebook for this tutorial.

Example :- Your default address is “www.just4try.comxa.com”.

After adding id :- “www.just4try.comxa.com/?id=facebook”.


Whenever victim Login through your phishing page then the passwords will be saved to the “user.txt” file to see that click the view button next to “users.txt” file.


Inside users.txt file you can see the victim’s email and password (highlighted part in below screen shot).


Finally you have your phisher link like this:

www.just4try.comxa.com/?id=facebook

Step 3 :- URL Hiding/Masking

Presently you need to shroud the URL. That way it can be less suspicious. so here we utilize Dot TK url Shortening. your real Phishing url can make a feeling of uncertainty in casualty's psyche, we can hide the url. Dot.tk is an online administration which empowers you to hide/mask the url.

Go to http://www.dot.tk/en/index.html

Select Shorten URL and enter the phishing link and then click on GO. ( My Link :- www.just4try.comxa.com/?id=facebook ).


Enter the domain name you want to rename your phisher link

Now we have the phishing url shortened like below:

www.just4try.comxa.com/?id=facebook  =  anything-you-entered.tk

Step 4 :-  Responsive Demonstration

Mobile View


Desktop View



If you have any queries or suggestion about our post then we like to know in comment section.