Hey Folks, as we know that whenever we need to do a phishing attack, we use github tools and to execution them we need an operating system such as : kali linux, parrot os etc. But sometimes due to various reasons we are not able to reach the localhost machine, thatβs why we use many types of paid cloud services. But through this tutorial we will show how we can perform phishing attacks from anywhere using free Google cloud services.
Lets take a look π !!
Before starting the tutorial, let us tell you that you can use this technique through your android phone after which you will not need to download external application. Let us first give you a short introduction about the google cloud shell. βCloud Shell provides you with command-line access to your cloud resources directly from your browserβ. Now first go to the website and login through any Google account from here. Thatβs it, your kali linux operating system is ready to access from anywhere.
https://ssh.cloud.google.com/cloudshell/editorYou do not need any guidelines to control this cloud service as it will be easily controlled by beginners. Back to the work π !! We assume that you have created your account on google cloud shell, Now take a phishing tool from GitHub and try to install and configure it. In our case we will choose our favorite phishing tool called βAdvphishingβ. Copy the below command and execute on the cloud terminal.
git clone https://github.com/Ignitetch/AdvPhishing.git
cd AdvPhishing/
bash Linux-Setup.shNote : If you are using the kali linux then we have to use the same command to install this tool.
Sounds good π !! Our idea has worked and below you have to give your ngrok token that you can opt from here.
Great π !! As you saw above that the tool is successfully installed and configured on the terminal without any errors and even to set it up we didnβt have to install any external dependencies. Now choose any option you want to create a phishing page.
bash AdvPhishing.shThe tool modifies the phishing link first and gives us a real domain phishing link so that anyone can easily cheat.
Nice π !! In this tool has two factor authentication phishing page, so If anyone gets stuck on the OTP then through this tool they can bypass it by entering OTP from the victim.
Alright π !! The final results will come here and you can see that we have successfully obtained the credentials of the victim through Google Cloud Shell. Similarly you can use the tools and access your account from anywhere.
A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.
The gau (Get All URLs) tool is a versatile open-source utility that collects URLs from…
Jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic…
Hey Folks :) !! In this tutorial, we will describe some of the techniques commonly…
Hey Folks :) !! In this article, we present the "Termux Cheat Sheet for Hackers"…
Amid the rapid advancement of technology, the significance of human involvement in cybersecurity frequently goes…
Hey Folks, we are back today after such a long break, but don't worry we…
This website uses cookies.