If you combine that though, with yourself acting as a confident person in a library for example, letting everyone know around you that if everyone wants to join Facebook must use your shortened link for “security reasons”. However, the shortened link alone would have no effect to above average users. So yeah, now you got a not so suspicious link to access Facebook. You could use some link shorteners like Bitly or Google URL Shortener, to transform that suspicious Private IP address of yours into a link that looks like every other shortened link.
With what lie would you come up with in order to persuade him/her? “Here, use this IP address to access Facebook, because insert imagination here”. Imagine yourself trying to persuade another person why he must access Facebook through your Private IP and not by typing the original link. But, now you ask yourself why and how would people want to access Facebook through your Private IP and not with the original link.
Yet, you and everyone else in your local network can now access Facebook through you and by that I mean through your local Private IP address.īy now a cunning smile should be starting forming on your face as you realize that, if only everyone could access Facebook through you, by typing your Private IP address in the URL field, instead of the typical Yes, that would be awesome, because in that way you would be gathering/getting/ harvesting all the credentials from the users that try to access Facebook through you. By now, you have the option to access Facebook, by opening a Web browser and type or if you are mad enough by typing one of its Public IP addresses, 173.252.120.6. Let’s hold on for a second and review the procedure so far. Type Private IP then press Enter, then type and press Enter Next, type the desired website to be cloned, in our case, and press Enter. Go ahead and type your Private IP address and then press Enter. Both Private and Public IP methods will be presented, starting with Private IP. Now you are prompted to type the IP address. Then, type 2 for Site Cloner and press Enter Then, type 3 for Credential Harvester Attack Method and press Enter Then, type 2 for Website Attack Vectors and press Enter Type 1 for Social-Engineering Attacks and press Enter Next, type 1 for Social-Engineering Attacks and press Enter, then 2 for Website Attack Vectors and press Enter, then 3 for Credential Harvester Attack Method and press Enter, then 2 for Site Cloner and press Enter. Without further ado, launch Kali, open a terminal window and type “service start apache” in order to start the Apache service and run the cloned website locally and then “setoolkit” in order to launch SET.
#HOW TO USE SOCIAL ENGINEERING TOOLKIT TO HACK FACEBOOK HOW TO#
Also, you need to know how to use port forwarding on your router if you want to clone Facebook and target users outside your network, but more of that later on in the guide. You can type “ifconfig” in a terminal window to display your private IP and as for the public IP, simply type on Google “what’s my ip”. Write down your private and your public IP. Two very basic things before starting following the guide. You can find many details regarding Apache and running a website locally in the DVWA article, here (link). This means that your localhost, 127.0.0.1 will be running the desired website, provided that you enable the Apache service. Site Cloner, as the name suggests, is a tool that gives you the option to clone a website, locally. It was created by TrustedSec and according to them, Social Engineering is one of the hardest attacks to protect against and nowadays one of the most prevalent. in Social Engineering environment, as the name suggests.
It’s a framework that offers a variety of tools regarding phishing, spoofing, etc.
It is an open-source tool written in Python. So, what’s Social Engineering, SET, Site Cloner, Man-in-the-middle Attack, Phishing and Credential Harvester Attack? SET (Social-Engineer Toolkit) A few more definitions so everything will be clear before witnessing some awesomeness.
0 kommentar(er)
