Socialphish attack step by step guide in kali

Socialphish- Phishing tool in kali:

A potent open-source phishing tool is socialphish. Target has recently been the target of phishing attacks using Socialphish, which is growing in popularity. The Social Engineering Toolkit is more user-friendly than Socialphish.  A different tool called Socialphish created some of the templates that are included in Socialphish. For 33 well-known websites, including Facebook, Instagram, Google, Snapchat, Github, Yahoo, Protonmail, Spotify, Netflix, Linkedin, WordPress, Origin, Steam, Microsoft, and others, Socialphish provides phishing templates and web pages. If a user chooses, Socialphish also gives them the option to use a unique template. Using this tool, phishing attacks are simple to carry out. They can use a lot of imagination to make the email appear as authentic as possible.

Feature of Socialphish:

●   Socialphish is an open source tool in kali linux.

●   Socialphish tool is a very simple and easy tool. Socialphish is  written in bash language 

●   Socialphish create phishing pages on more than 30 websites.

●   Socailphish create phishing pages of popular sites such as Facebook, Instagram, Google, Amazon, Microsoft, Steam, origin, LinkedIn, Wordpress, Paypal etc.

Installation Process :

Step 1:  Open your kali machine or kali linux operating system and move to the desktop. Here you to create a directory called  socialphish. In this directory, you have to install the tools.

     

Command: -    cd Desktop

 

Step 2:- You are currently on a desktop. Here, a directory called Socialphish must be created. Use this command to create the Maskphish directory.

Command:-   mkdir socailphish

Step 3:-  A directory has been created by you. Use the next command to enter that directory now.

Step 4:-  Your current location is the Socialphish directory. You must download the tool into this directory, which requires you to clone it from GitHub. To clone the tool from GitHub, issue the following command.

Command:-   git clone https://github.com/xHak9x/SocialPhish.git

Step 5:- The Socialphish directory has the tool downloaded in it. Use the following command to list the component of the tool has been downloaded.

Command :-      ls

Step 6:-  You can see that SocialPhish, the tool, has generated a new directory when you list the tool's contents. To view the tool's contents, you must navigate to this directory. Use the following command to move within this directory.

Command:-   cd SocialPhish

Step 7:-  Use the following command to list the contents of this     directory.

Command:-        ls

 

Step 8:-   The next step is to use the following command to grant the

tool permission.

Command :-        chmod +x socialphish.sh

Step 9:  At this point, use the following command to launch the tool. This command will display the tool's help menu.

Command:-       ./socialphish.sh

#  Choose any options (1 to 33)

The tool is running successfully. Now you have to give the option number to the tool for which you have to create the phishing page. Suppose you want to create a phishing page for Instagram then you have to choose option 1. If you want a phishing page on Facebook choose option 2. Similarly, you can choose from all 33 websites in the tool.

Choose  one option ( 1 or 2 )

[01]  serveo.net (SSH Tunelling, Best!)

[02]  Ngrok

You can see that the link was produced by the phishing website for Instagram. Send the victim a link to this page. After clicking the link, the user will be taken to an Instagram lookalike website where they can enter their information. The Socialphish terminal will highlight it.

As you can see, we completed the login form and entered the username geeky and password geekygeeky. Once the victim clicks "Login," all of the information will be displayed in the social phishing terminal.

Credentials have been discovered, as you can see. This attack can be made on your target by you as well. Socialphish was at the centre of this. A potent open-source phishing tool is socialphish. Target has recently been the target of phishing attacks using Socialphish, which is growing in popularity. Compared to Social Engineering Toolkit, Socialphish is simpler.  Socialphish includes some templates produced by Socialfish, another programme. For 33 well-known websites, including Facebook, Instagram, Google, Snapchat, Github, Yahoo, Protonmail, Spotify, Netflix, Linkedin, WordPress, Origin, Steam, and Microsoft, Socialphish provides phishing templates and web pages.

●  Voice Assistants project in python

●  Python modules and packages

●  Automata | Regular Expression

●  Explain Operating System

●  What is Finite Automata? || DFA , NFA ||

●  What is Internet?

●  what is digital hacking 404?

●  What is man in the middle attack?

●  DAC & MAC as well as Zero-Day Vulnerability

●  Memory Allocation in c

●  Python tips and tricks

●  What is data encryption standard