Tổng lượt truy cập

Sunday, March 27, 2011

Desktop Phishing


What is Desktop Phishing -
This is a very advance way of Phishing. a lot different than the common way of Phishing. In the common way of phishing you can't get the real domain for an example: http://www.phishier.phisherhost.com/ but in Desktop Phisher you can get the http://www.phisher.com/.

Old way of Phishing = http://www.paypal.phisherhost.com/

Desktop Phishing = http://www.paypal.com/


Difference Between Phishing and Desktop phishing

Phishing

1.The Domain isn't real
ex:-www.phishingpage.freehost.com
2.You can Host in a free host
3.You have to link the victim to the phisher
4.Victim can use search engine to get
into the read website u have phished

Desktop Phishing

1.The Domain is real
ex:-www.phishingpage.com
2.You need to run a local Host or need a
dedi Host
3.Victim will automaticaly link to the phisher
4.Not even the search engine will be usefull
to get into site.

So lets Begin

http://download.cnet.com/WinRAR/3000-225...?tag=mncol
And Host File
http://www.ziddu.com/download/8824882/hosts.rar.html

You Need To download Wamp
http://www.wampserver.com/en/download.php

And A Phisher Your Going to use. You Can Use It OF Ur Own choice

Steps
**Setting UP**
1.Install a Web server Wamp .

-After You Install Wamp Server Left Click the Icon and Press "Put Online".
- Goto C:\wamp\www Place Your Phisher in That Folder Rename the Phishing Page To Index.html .
-Now once you Have done that goto http://ur.ip.adress/ And You Should See Your Phisher There.
Congrats!, Step 1 Done.

**Making Phisher Arm**
2. Goto http://www.ip-adress.com/ And copy your Ip.

-Open The "Hosts" file you downloaded With NOTEPAD.
-Replace the Whole "[YOUR WEB IP HERE]" With Your Ip Including the Brackets.
-Now Change The "phishingwebsite.com" And "www.phishingwebsite.com"
With The Website You Are trying to phish. for Example http://www.paypal.com/.
-Save The File. File >> Save.
So now it should look like this:

http://lh4.ggpht.com/_gftTL1HWmoc/S_zaFE...le.bmp.jpg

CONGRATS! You Now You Should Have Your Phisher Up, and The Phisher arm Created.

**Installing**
-Now Right Click The Hosts File and Select "add to Archive" Change the Archive Format from Rar To .Zip.

-Tick "Create SFX Archive" Click The "Advanced" Tab on the Top and Click
"SFX options" now Where is Says "Path to Extract" Add this C:\WINDOWS\system32\drivers\etc .

-Now Press "Modes" at the top and Check "Hide all" and "Overwrite All"
Now Press Ok, and Ok again.

Now you there should be a File on your Desktop called "hosts.exe" Thats Your Phisher Arm.
When the Victim Runs that File She/He the hosts File Will Copy On there Hard Drive and VOILA! You'll Get the Logs. Everytime
They go on that Website
**Your Logs Will be Saved in your C:\wamp\www Directory for Wamp server. and Ht docs for xammp.
Bind The File With something and send to Your Victims