Hey Folks, in this tutorial we are going to talk about another new phishing tool named “Nexphisher“. Nexphisher is an open source tool, originally designed to carry out phishing attacks through social engineering, with 30 different-2 types of phishing pages through which you can obtain the credentials of a social media account .

Let’s take a look 🙂 !!

Installation

The first thing that we are doing is download this tool from github. After download this tool we will go to directory of this tool and install the dependencies of this tool by using the “bash” command.

Hmm 🙂 !! The setup of this tool will take some time to complete but it all depends on your network and computer configuration.

Done 🙂 !! After setup we can boot this tool using the following command. You can see the first look of this tool below and also we are choosing any option for demonstration purposes.

After selecting the phishing template it will give various options for port forwarding from which you can choose according to your own.

Ok 🙂 !! It has given us a phishing link which we have to share with the victim.

As you can see the phishing page looks like this after the victim opens the link.

Nice 🙂 !! As soon as the victim enters his username and password on the phishing page, he will go to the attacker.

Thus, you can select a phishing template and obtain the credentials of victim accounts by carrying out phishing attacks.

About the Author
Shubham Goyal Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.

3 thoughts on “Nexphisher – A Advance Phishing Tool”

  1. Hello. I’m extremely glad that i discovered your site.
    I have this issue with this tutorial and with almost all phishing links. Chrome and other browsers detect the URL as malcious with a message “deceptive site ahead”. This makes the users not enter their details. I’ll be really glad if you can teach me a way to bypass this warning message. Thanks in advance

Leave a Reply

Your email address will not be published. Required fields are marked *