Zphisher – A Automated Phishing Tool

Hey Folks, in this tutorial we are going to talk about another new phishing tool named “Zphisher“. Zphisher is an open source tool, originally designed to carry out phishing attacks through social engineering, with 30 different-2 types of phishing pages through which you can obtain the credentials of a social media account .

Let’s take a look 🙂 !!

Installation

To configure this tool in our system, we have to download it from github. After downloading we do not need to do more because we can directly boot it using the last command.

git clone git://github.com/htr-tech/zphisher.git
cd zphisher
bash zphisher.sh

Hmm 🙂 !! After booting the tool it will look like the image below where you can select any phishing template.

After selecting the template it will ask for port forwarding which you can choose according to your own.

Really 🙂 !! As you can see no one can say that it is a phishing link because it looks like real.

Ok 🙂 !! When the victim opens the link, the interface will open up as below.

Nice 🙂 !! As soon as the victim enters his username and password on the phishing page, he will go to the attacker.

Thus, you can select a phishing template and obtain the credentials of victim accounts by carrying out phishing attacks.

About the Author

Shubham Goyal Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.

Shubham Goyal

A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.