Hello guys welcome back here in this advance hacking blog where i always publish articles related to advance type of hacking which is used by many popular hackers.And don't think learning advance hacking is illegal because if you don't know actually what is hacking and how it will affect your life you can't know the ABC of advance hacking.
Now my today's article is for those guys who want to make an phishing link which is totally undetected by any type of antivirus or other security scanner tools or website.But before going to create this type of phishing link you need to know something basics of this hack.I think you already familiar with what is phishing attack and how it will work,here i am not going to tell you about phishing.
Suppose that if you are going to hack someone facebook account through phishing method ,you simply download phishing page and upload it on a free webhosting site and very easily you'll get your phishing link for facebook but one think you need to know that your phishing link looking like absolutely fake or because it'll look like faceboook.netme.ne.com etc or something like different .So if your victim is quite smart then you can't make him fool.
Now think if you are able to create an phishing link same as https://www.facebook.com then i can say 100% no one can determine it is a phishing link and very easily he/she will click on your link without having any suspicious thinking and the rest work you know how phishing link work and how you will get password.
So this all the things become possible by IDN attack or homograph attack ,now you need to know the basic of this attack.
What Is IDN Homograph Technique?
What Is IDN Homograph Technique?
Here idn stands for international domain name .Did you know guys you can register your domain not only in English but also in other languages available in the world?For example you can register your domain in Latin O,Greek O,Cyrilli O ,Chinees Laguage etc.And many of the character in these language exactly match with each other and no one can determine this is the English alphabet or Latin o alphabet.So hackers simply use this technique and register the domain having the same character of different language.
Suppose If we are talking about English language ,You can't determine these two character I and l .The first latter is capital i and second latter is small L . So you can think that it become impossible to know that what is the reality.Below I'm giving you some more example for clear understanding.
original | fake |
www.apple.com and | www.apple.com |
www.microsoft.com and | www.rnicrosoft.com |
www.google.com and | www.google.com |
www.facebook.com and | www.facebook.com |
www.microsoft.com and | www.rnicrosoft.com |
www.google.com and | www.google.com |
www.facebook.com and | www.facebook.com |
Now simply determine the difference between original and fake one.If you don't notice then don't worry i m telling you ,in first example i use capital i instead of L ,in second example ise r and n instead of m , in third example i use capital i instead of L and in fourth example i use other language alphabet which look like same as the E latter of English.
Now the time come to know how you can create this type of phishing link and how to register this type of domain in Unicode character.
Step By Step To Create An Advance Phishing Link Using Homograph Technique
Step:1) Very first decide you are going create an phishing link for which website,you can create it for any one line gmail,twitter,instagram etc But i am suppose that you are going to create phishing link for facebook.Okay simply open this site in your web browser https://www.irongeek.com/homoglyph-attack-generator.php
Step:2) After that simply enter the domain name of that website whose phishing link you want to create for example www.facebook.com
Step:3) Now you can see in the screen there are many similar character, you can choose any one or two similar character which are looking same as English alphabets.
Step:4) Now scroll down the screen and click on submit button.
Step:5) Here a new screen will come and you'll get the Unicode character of www.facebook.com which is located after the encoded lable to set up in dns
Step:6) Okay if you are register the domain with this same uncode character domain name you'll get the same name which look like same as www.facebook.com but reality you know (This same looking character are of another language character).
Step:7) Now for making this phishing more powerful simply give it ssl certificate then now your phishing link will look like https://www.facebook.com (in https -s stands for secure).So no one can think this is a phishing link.
So friend this is the most powerfull method by which hackers create his phishing link and giving it a ssl certificate ,Did you know in this all process hackers need to pay approx 15$.
Thanks
.
.
Owner(Aryan)
Admin(Ashutosh)
Watch
Our Channel
~~~~~~~~~~~~~~~
----------The Bro Gadwali
~~~~~~~~~~~~~~~
No comments:
Post a Comment