Phishing is the process of stealing sensitive information (silently), such as usernames, passwords, and bank information, by pretending to be someone you’re not. I have already explained it in detail in phishing.

Files we will be creating:
1. phishing.php
2. index.html
3. password.txt

You can save your time by simply downloading all the 3 file which I have already created.

Final step

Upload all the 3 files in file manager of your web hosting. If you don't have your own web hosting at present, search for a free web hosing site which gives PHP access. I prefer . (

Sign up for a on this site. Go to file manager and Upload all the 3 files(UPLOAD IN PUBLIC_HTML FOLDER & DELETE DEFAULT FOLDER) and save it.

Once everything is up and ready to go, go to the link your host provided you for your website and you should see the Gmail page replica. Type in a username/password and click Sign in. This should have redirected you to the real Gmail page.

Now whoever will try to login for Gmail through your Fake page, his/her Username and Password will be automatically saved in Password.txt  file as plain text which you can view easily. Also the victim won't have a hint that he/she has been hacked since, he/she will be redirected to the original Gmail page and will get a feel as if he/she entered a wrong password by mistake.

1 comment: