In the recent years, social media has become an integral part of our lives. Whether we visit a football game or have fun with our friends, we post pictures and tell our friends and family about the fun we had. Social Media has truly made the world a smaller place. Facebook Messenger and Instagram Direct Message have replaced text messaging. Messaging services have become more and more secure, and people trust them to keep their text messages private.
Human beings as a species are very keen to jealousy and the curiosity to know other peoples’ secrets is difficult to curb. So if you want to read more about human psychology, you can go to a site that writes articles about human psychology. Today we are going to learn how to steal other peoples’ secrets and if you are one of those people whose secrets have been stolen, go through the article to find out how they cracked your ‘secure’ password.
Learn advanced Phishing
We are going to be using a method similar to what is popularly called ‘phishing‘. It involves making a fake, legit-looking page that a person will easily trust and put their private data into. Conventionally a phishing page is a replica of the original page whose credentials you are going to be stealing.
For Example: To steal someone’s Facebook password , you make a page that looks just like the Facebook login page.
In this tutorial, we are going to take a different path. Instead, we create a page that will make the person want to login into a page that is not a replica.
To teach you the basics, we will be creating a website that claims to be an auto-liker for Instagram. We have chosen this specifically because more and more people will want to do this.
To Do This Follow This 6 Easy Steps
Go to www.000webhostapp.com and create a free hosting account. After verifying your account, log in, and you will be taken to your list of websites.
Click on Manage Website and the next page, select Build a WordPress Website. We are using WordPress because it is much easier to make a legit looking website using the plugin.
Customize your site and select the theme you want to use.
Step 4: After you have tailored your website, go to Plugins and Add New Plugins.
Download and install a plugin called ‘XYZ HTML.‘ Then click on the plugin that you just installed, and you will need to add this HTML snippet.
In Tracking name put InstagramLogin
And in HTML code put this code:
In this first line, enter the URL of your website.
Now go to posts and delete all the posts over there if any. Then go to pages and edit the home page. Make it look like a legit auto liker. Then go in the toolbar of the editor, you will see the icon of XYZ HTML. Click on it and select InstagramLogin.
Now you need to go to the file manager. You can find this in the CPanel of 000webhostapp website. Click on manage website and you will see file manager on the top row of shortcuts. Over there you will find other files from the WordPress plugin. Here, click on the ‘+’ icon in the top right corner to create a new file and name it to write.php. In this file, enter the following code and save it.
Change your site here to whatever the name of your website is. You are almost done. Now we just made to make an error page so that the user does not suspect phishing.
Go back to WordPress and in the navigation drawer one the left, click on pages and then create a new page. The title of the page should be an error, and in the main text error put this:
Error 404: Page not found. Please try again later
Make sure the URL of that page matches with the URL in Step 5. Otherwise, it will not work. Now you have set up your trap. You must lure your victim into it by sending the URL to them ‘mistakenly’.
With this knowledge that I have given you, you will want to hack social media accounts of every person you know. Before doing that, just think why you are doing it and what you will get out of it. Think about the consequences of your actions and if you still believe that it’s worth it, only then do it. I do not support this in any way.
If you are one of the people whose account has been hacked using this method then here are the things you must always check before logging into your accounts:
- Make sure the URL in the URL bar is legit.
- If you see that a website is asking for your login information and you think that the website might not be real, always put in wrong information deliberately just to check if the website is legit.
- Make sure the URL begins with https and not HTTP because https websites are more secure.