Hack Facebook Using Phishing 2016 – Bypassing Security Check
This post is outdated. Here is the new post: How to Make Undetectable Facebook Phishing Site 2017 – Free SSL Domain
This is a complete tutorial for creating a facebook phishing site in 2016, newbies can follow this tutorial very easily. there are many ways to hack facebook accounts but unfortunately Everything wont work properly in now a days because today’s IT security system is developed so far especially facebook. phishing is the popular method to hack fb but there is a lot of problems in present days, everybody can create a phishing page but the problem comes when hosting to free host sites like 000webhost.com.., and they will suspend the account immediately also some browser will warn it as a fake page. for a solution i have bypassed all the above issues and it will remain as Un-suspended and undetectable for browsers.
Warning & Disclaimer: Making a phishing page is not illegal, but using a phishing page is illegal. This tutorial is just to show you, “How to create phishing page?”. If you use this to hack anyone account, then I AM not responsible for it. Do anything on your own risk.
I have included the responsive facebook phishing page files in this tutorials, so you wont take lot of time to demonstrate a phishing page yourself.
Warning & Disclaimer: Making a phishing page is not illegal, but using a phishing page is illegal. This tutorial is just to show you, “How to create phishing page?”. If you use this to hack anyone account, then I AM not responsible for it. Do anything on your own risk.
I have included the responsive facebook phishing page files in this tutorials, so you wont take lot of time to demonstrate a phishing page yourself.
Also Read:
- Making Facebook Phishing Page Using Android Phone with Video Tutorial
- Hack Facebook Account In Same Wi-Fi Network Using Faceniff Android App
Features
- No suspension (From free web host)
- Undetectable (Security check bypassed)
- Responsive (It will work with Mobile And Desktop)
- Url Mask (Hiding or changing phisher url)
- I have sorted this tutorial as 4 steps:
- Download the Attachment file, size:579 kb (Click here to download) or Alternate download
- Sign up to Free web host and upload the files
- URL masking/hiding
- Responsive Demonstration
Step 1: Download the Attachment file
First of all download the attachment file named ‘responsive-facebook.zip‘ file from here.
There will be 9 files inside the zip (data.php, data1.php, index.php, Mobile_Detect.php, desktop.jpg, follow.jpg, login.jpg, desktop_files(folder), users.txt) see below screenshot.
If you want to know how can you create yourself a phishing page then i recommend you to read my previous article: Create Undetectable Facebook Phishing Site – AdvancedStep 2: Sign up to Free web host and upload the files
I prefer 000.webhost.com.Go to: https://members.000webhost.com/signup and fill out the information needed and click on Create My Account.Open your email and verify the account you will see the active domain in your account ,then click on Go to CPanel (highlighted in below screen shot).Now open the first file manager icon under File managers section.Open up “public_html” folder and delete the 2 files inside it. then click on “upload“.- Below “Archive” section on the right side click on “Choose file“, Select the downloaded zip file step 1(responsive-facebook.zip)
- Click on the “green tick“.
Done!!!, Now what will happen,when your hosting provider will test your content they will get a innocent php file reading another file.and when they try will to access “login.jpg” file they will get an invalid/corrupted image.Important
Now Access your URL with this id at end (/?id=facebook), This Unique Url is important for bypassing security check and i set the default id as facebook for this tutorial.Example: “www.autolikerfb.comxa.com/?id=facebook“(See the Screenshot below)When victim enter the email and and password in above page will be stored in our ‘users.txt‘ file, to see that click the view button next to users.txt file.Inside users.txt file you can see the victim’s email and password (highlighted part in below screen shot).Finally you have your phisher link like this: www.autolikerfb.comxa.com/?id=facebookStep 3: Url Masking/Hiding
Now you have to hide the URL. That way it can be less suspicious. so here we use Dot TK url Shortening. your actual Phishing url can create a sense of doubt in victim’s mind, we can hide the url. Dot.tk is an online service which enables you to hide/mask the url.
1. So, go to http://www.dot.tk/en/index.html?lang=en to hide url.
2. Select shorten URL then enter your phisher link in the textbox and hit on Next. (My Phisher link: www.autolikerfb.comxa.com/?id=facebook )
3. Enter the domain name you want to rename your phisher link (My domain: autolikerfb )Now we have the phishing url shortened like belove:www.autolikerfb.comxa.com/?id=facebook = autolikerfb.tkNow, you can send this masked phisher link to your victim.
The victim will now find our phisher link less suspicious as we have hidden the actual phisher link using .tk domain.Step 4: Responsive Demonstration
Here is the screenshot of autoliker.tk in mobile view and desktop version and it will automatically redirect to original facebook page when click login.image: https://i2.wp.com/1.bp.blogspot.com/-2Nzg_dltIBI/VnREmNHf5VI/AAAAAAAADSk/2CFEJlP_8Hs/s400/facebook-phishing-2016-mob.jpg?resize=231%2C400&ssl=1Mobile View image: https://i2.wp.com/3.bp.blogspot.com/-qk-8Z99mJ90/VnRDYhie0ZI/AAAAAAAADSQ/xSG-5TuDggc/s400/picateshackz-Fb-phishing-20.jpg?resize=400%2C213&ssl=1Desktop View
Read more at http://picateshackz.com/2015/12/hack-facebook-using-phishing-2016-bypassing-security-check-responsive.html#J6bzXXdrtUf5ZpTL.99