Phishing can be seen as trying to farudently obtain sensitive, private information from users through fake login pages or any other fake forms. This information can be anything ranging from your mail account password to your credit card pin numbers.
Phishing is an important hacking tool in e-mail hacking.
Phishing requires just a few steps for ecxecution and if you are good in HTML script writing then its perhaps the easiest thing in the world about mail hacking. And if you are not then do not loose heart there are a variety of phish creators available on the net that can take care of the script part for you.
The first step is to create a phishing page for the site you want. This can be done by simply copying the source code of the login page and editing the "action" in the script. Other details include creating of database file for the filled forms to be sent to you.
Next step is to register yourself for free web hosting service to host your account from which the phishing page would be uploaded on the net.
Take care of the domain name of your site. This can arouse suspicion so its better to use url shortening services available on the net.
Next upload your page and related material on the web.
Now comes the most important and tricky task: Convince or trick your target into using that page. This would require your social engineering skills.
This technique would come into use during the 2nd round of the event.
No comments:
Post a Comment