Nowadays hacking is a most popular topic among IT personnel and everyone talking about how to hack,hacking tools,facebook hacking,email hacking,how to prevent from hacking your facebook blah blah…….So I decided write about using Social Engineering Toolkit(Setoolkit/SET) and I will demonstrate make phishing page for facebook and gmail.This will cover basics of setoolkit.
First you need to install metasploit and setoolkit together on to your Linux machine.Doesn’t matter you own a windows machine this will work fine but you have to install setoolkit and metasploit on your windows operating system.I will put download links below my post.I am using Kali Linux where setoolkit and lots of tools preinstalled.Also you can use another Linux Operating System such as ubuntu,debian or Linux mint no matter but you have to install setoolkit and metasploit( metasploit not connected with phishing attacks but some functions running together).
Ok this is very simple and easy to do.You have to do as I do note:This attack works on only Local area network.But You can launch your attack by doing a port forwarding. I will write a post bout WAN attacks later.So for now let’s start our attack against victim.
First open up your terminal and type setoolkit. you need to have root permissions to open up setoolkit.If not you have to type sudo setoolkit(on linux distros like ubuntu,Debian etc….). So after typing that command setoolkit will fire up and all you need to do is follow my steps.
ok above picture shows list of options to use for attacks. So according to topic we are going to use no 1 in the list “Social Engineering Attacks” . After selecting that option it will prompt another set of selections. So I will list down complete path to get done this work.
Social Engineering Attacks -> Website attack Vectors -> credential harvester -> site cloner .
after selecting site cloner command you may need to enter an IP Address and it should be your local network interface ip address .
set:webattack> IP address for the POST back in Harvester/Tabnabbing:
In my pc its 192.168.1.107 . You can check your ip address by typing ifconfig in the terminal.
wlan0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 192.168.1.107 netmask 255.255.255.0 broadcast 192.168.1.255
inet6 fe80::42f0:2fff:fe46:f01d prefixlen 64 scopeid 0x20<link>
ether 40:f0:2f:46:f0:1d txqueuelen 1000 (Ethernet)
RX packets 480643 bytes 614305378 (585.8 MiB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 412048 bytes 58977638 (56.2 MiB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
After entering the ip address press enter to continue. Then it will prompt something like this
set:webattack> Enter the url to clone:
That means you need to enter the address of the site you need to get usernames and passwords.
In this case it will be facebook.com. (note:the site you are entering to get username and passwords , need to have web forms to retrieve credentials from site)
after completing all necessary things setoolkit ready to gather information from certain site.
Now send your ip address to victim and wait for a login attempt when victim access in to our link it will appear a facebook login page.After victim login with your link it will post back username and passwords in to setoolkit.
So if you need to hack gmail accounts instead of facebook you need to add the address of gmail login page to setoolkit and other options will remain same.
As a summary this attacks only valid for local area networks while you can also do this attack over WAN by opening ports in your router. Success of this attack depends on how you are good ate doing social engineering things.