Hey Folks, In our previous articles we discussed about the installation and some features of the Metasploit tool, but in this article we will discuss the leftover features of this tool. You can check both article from here.
Letβs take a look π !!
Letβs boot up your Metasploit framework and select the βPhishing Campaignβ option. Through this feature of this tool we can easily host phishing pages on our localhost web server and get the victimβs credentials easily.
Hmm π !! We have to give the name of the project which we can give as per our own.
After that we have to name the phishing page which will appear in the link and also on the browser. In our case we give the name of the phishing page as βloginβ. After that select βCustom Campaignβ option and click on βWeb pageβ, a sub-feature of βCustom Campaignβ option.
Again, you have to give the same name that we gave in the beginning. Then select the type of attack as phishing and enter the address where you want to redirect the victim.
Move to the content section and click on the βClone Websiteβ option to clone the entire website in just a second. After that give the name of the website you want to clone and then click on βcloneβ button.
Great π !! You can see the preview of the clone page side by side and it look like same as original facebook page.
Done π !! All the work is finished and now we need to start the campaign by clicking on it.
Link π !! The tool generates a phishing link and places it in the βtask logβ section. Just we need to send it to the victim.
As you can see in the image below what the phishing page looks like after the victim opens the link.
You can see that the credentials has been submit by the victim twice.
Nice π !! Finally, after opening it, we get the credentials of his social media account entered by the victim. Thus, you can host any social media phishing page on metasploit framework and perform phishing attack easily.
A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.
Hey Folks :) !! In this article, we present the "Termux Cheat Sheet for Hackers"…
Amid the rapid advancement of technology, the significance of human involvement in cybersecurity frequently goes…
Hey Folks, we are back today after such a long break, but don't worry we…
The security of your API should be one of the top priorities of companies. Without…
Hey Folks, In today's business world, it is essential to have an online presence. However,…
Hey Folks, Is your business prepared in case of a cyber attack? Many companies don't…
This website uses cookies.
View Comments
Thank you another great tutorial. Could you please do a guide on the best way to send the link to the target. All the phishing tutorials end with sending the link, but what's the best way to send the link?
you can use free services such as : ngrok, servo.net and many more
if you want to send link to the victim then you have to use some social engineering techniques such as :
1. send through whatsapp with outside country number.
2. send through email address for that you can check our article.
https://secnhack.in/multiple-ways-to-send-email-anonymously/
3. send via sms
EI