Phishing Attack using SETOOLKIT in Kali Linux

 

                                                                Information Security Analysis
                                     PHISHING ATTACK USING SETOOKIT IN KALI


TASK 1: PHISHING ATTACK

What is Phishing Attack?

Phishing attacks are the practice of sending fraudulent communications that appear to come from a reputable source. It is usually done through email. The goal is to steal sensitive data like credit card and login information, or to install malware on the victim's machine.

Why attackers perform phishing attack?

  • ·                  Phishing is a type of social engineering attack often used to steal user data, including login credentials and credit card numbers.
  • ·                  It occurs when an attacker, masquerading as a trusted entity, dupes a victim into opening an email, instant message, or text message.
  • ·         The recipient is then tricked into clicking a malicious link, which can lead to the installation of malware, the freezing of the system as part of a ransomware attack or the revealing of sensitive information.

 

HOW TO DO PHISHING ATTACK:

Using SETOOLKIT: The Social-Engineer Toolkit (SET) is an open-source penetration testing framework designed for social engineeringSET has a number of custom attack vectors that allow you to make a believable attack in a fraction of time. These kind of tools use human behaviors to trick them to the attack vectors.

  • To perform this experiment, first open Kali Linux 'terminal'





ifconfig: to get the ip-address of Kali XXX.XX.XXX.XX (Below the Blue Line)

setoolkit: to initialize Social Engineering Toolkit 


Select option 1 to perform Social-Engineering Attacks-


Select option 2 for Website Attack Vectors-


Select option 3 for Credential Harvester Attack method-

METHOD 1: USING INBUILT WEB TEMPLATES

Select option 1 for Web Templates-

Enter IP Address of Kali: XXX.XX.XXX.XX

Select option 2 for Google template



 Open a New Browser and Search localhost

Enter some credentials login-id – abc123@gmail.com and password - 987654321


 

Here, is the actual google page after login-


We successfully, stolen credentials login-id: abc123@gmail.com & password: 987654321



We have successfully, performed phishing attack using SETOOLKIT with first method of using standard web template and able to steal user credentials login-id and password. 


Thanks for Reading!

Mukul Kumar



Comments

Post a Comment

Popular posts from this blog

Smart Parking System Using Arduino Uno

Image
Smart Parking System Using Arduino Uno Hello everyone! Today, we will learn how to design a smart parking system using HC-SR04 ultrasonic sensor, servo motor, buzzer, LCD, and Arduino Uno. Constraints and Conditions took under consideration - Ø   The ultrasonic sensor module place near the gate entrance continuously checks for the incoming vehicles. The LCD display “Smart Parking” on the first row and “Avail. slot: XY” on the second row of the display. Ø   When a vehicle comes closer to the ultrasonic sensor detection area and parking slot is available then the system open a gate the barrier to 90° (close after 10 seconds) to allow the vehicle to the parking slot and decrement parking slot by 1. Ø   If no parking slot is available then display a message “No Parking slot” on LCD (2 nd line) and switch on the buzzer (for 5 Seconds). Have a similar system on the exit and increment the free slot by 1 for every vehicle that leaves the parking slot. Simulate and veri...
Read more

Generate sequence of different waveform using MATLAB

Image
AIM: To generate sequence of different signals and to perform several operations on signals using MATLAB simulator. SOFTWARE USED: MATLAB TASK : Generate the following signals using MATLAB        Unit step        Unit ramp      Exponential      Sinusoidal              Exponential TASK LOGIC: This example shows how to generate widely used periodic and aperiodic waveforms. For plotting the required sequence we have to first create an array of 1’s using ones() command and an array of vectors (n) also. After this using proper alignment of array of 1’s and array of vector values (n) we can create any of the above mentioned sequence.   Plotting Unit step, Unit ramp, Exponential and Sinusoidal sequence:   CODE: clc; clear all ; close all ; N=21; x=ones(1,N); n=0:1:N-1; subplot(2,2,1); stem(n,x); %Plotting Unit step function xlabel( 'n' ); ylabel( 'x(n...
Read more