Sunday, 27 September 2015

Step by step instructions to Create Facebook Phishing Android Application


In this tutorial i'm going to explain how to make an android application with facebook phishing method, so you can get the username and password of each person who login to facebook using this app.

This app is actually looks like real facebook app with real facebook icon so victim can't find out whether it's a fake facebook application or not.

Sending fake page's url to victim is not possible now a days ,that method is easily detectable in firefox and google chrome browsers that's why i'm tested this new method to phishing facebook and it works good.

steps

1. Make a phishing facebook login page as android browser and host to web
2. Make an android application using online app creator

step 1: Make a phishing facebook login page as android browser and host to web
First you need to download 'fb phishing.zip' attachment.  Click here or Mediafire download
It contains 4 phishing page files and 1 facebook app icon (.png file)
  • login_files (folder)
  • login.html
  • post.php
  • passwords.txt
  • facebookICON (.png)
Benefit of this attachment:

>> Customized facebook phishing page files for mobile browser
 (It will automatically redirect to real facebook page with notification of  'Your password was incorrect' while log in from fake phishing page so victim will think he entered wrong password and he won't have any doubt about is it fake or real?).

Now you have to upload the 4 files (login_files, login.html, post.php and passwords.txt) to web hosting site and get the fake page's url.

I recommended you byethost because it is completely free hosting with free domain.

Go to: byethost.com  and fill out the information needed and click on register button.
 
2.Now Goto your email account that you gave and confirm your account with confirmation link.
(Note the cpanel username that you got when verified with your activation link)
3. Now Go to http://panel.byethost.com  and Log into your account Cpanel.
Enter your cpanel username and password and login
 
4. Now when you are logged into your account then Go to File Manager under Files and log into it.

 5. Now Click on the Public_html.
6 .Click on the Upload button and upload 4 files named login_files, login.html , post.php and passwords.txt
(before uploading files you need to delete all the files inside  the Public_html folder)

7. After successfully uploaded 4 files click on login.html file, then your fake phishing page will open up and copy the url. (this url is your fake page's address)

step 2: Make an android application using online app creator
Go to  www.appsgeyser.com

Click on CREATE NOW Button
Click the option website
Paste the phishing page's url in the field (that you created in step1)
Fill the field App name: Facebook or something related with facebook, click next

Description: give description about app, click next

Icon: custom icon - upload file - choose file(the FacebookICON.png you got with the attachment) - submit
Click Next

Click Create app

You are done,
Download app to your computer.and install it on your mobile

0 comments:

Post a Comment