Skip to main content

FTP Server for redpill Hacker

Update: This article is for an older version of redpill Hacker.
Please see: Setting up a FTP Server in redpill Hacker 

When to fill in the FTP details in redpill Hacker ...


When to use links

In redpill Hacker there are two Social Engineering Attack methods that would require the use of a FTP Server - a link or a website.

If you are new to redpill Hacker, I suggest you start with the easier attachment types like a program file, zip file, or Wordpad file, as these types do not require a FTP Server. When you choose one of these types, the FTP Settings are disabled.

Using a link as part of a social engineering attack is sometimes needed as some email services like gmail block attachment types like program files and zip files. Although Wordpad files are allowed in gmail, some other email services or anti-virus applications will block wordpad attachments that contain embedded program files.

How to use a link

A link in an email is just that - a 'link' that points to something somewhere else. If you want to use a link you will need to have a FTP Server or website hosting option where you can place your social engineering attack module.

There are free file hosting services available like idrive or google drive that you can use as explained in this article: How to attach a spy program to an email.
The problem with the free hosting options is that most of them will not allow you to upload a program file or have a direct simple link to the file.

There are very cheap hosting options (FTP Servers or websites) that will allow you to upload your install module and use a direct link to the file. The best solution would be to get a website hosting option with your own domain name that will fit in with your social engineering con. For example, if your social engineering template you used is for a 'virus removal tool', you could choose a domain name that has to do with virus removal. The link that you will use will then look a lot more legit. A good and cheap hosting company is godaddy.com ... but there are many to choose from.

Once you have your website or file hosting site, your hosting company will provide you with the FTP details. You will need the following:
  • FTP Server - usually just a IP address or it could also be something like ftp.mysite.com
  • FTP Username
  • FTP Password 
  • FTP Folder - this is the folder where you place your website files. With a file hosting service it will usually be in the root so you just enter '/' in redpill hacker (without the quotes) or if it is a website it is usually '/httpdocs/'.
You also need to specify the download link.


In the download link box, just replace '[replace with your domain]' with your domain name. 
If you use a free file hosting service they might generate a link for you. You will then need to use that link instead.

Want to take it one step further?

As part of your social engineering attack you can use a website instead of a link. Most users will not easily click on a link in an email, but they will download a free application from a website.
With this option you will need some basic knowledge of how websites work ... if you don't, you can get redpill to do it for you for a fee. 

Comments

Popular posts from this blog

How to remotely install spy software

---------------------------------------------------------------------------------------------- Update (2015/07/07):  redpill now has a new and better product for installing spy software remotely: redpill Hacker
You can also have a look at newer articles with better tools at:
http://spysoftware.redpill.co.za -----------------------------------------------------------------------------------------------
In a previous article we discussed how to get usernames and passwords from other users on a computer you have access to. We will now look at how to install spy software on a computer you do not have access to … even if the computer is on the other side of the world.

Step 1: Get quality Spy Software

You will need quality spy software that can be remotely installed and is not easily detected and removed by anti-virus. There are a couple of key loggers that can be installed remotely, but very few that can secretly be remotely installed.

redpill Detective has been designed to be covertly installed…

Sending a spy program with gmail

To install a spy program remotely you need to email the target an install module. Spy software like redpill Agent and redpill Detective allows you to hide the install module within a 'cover application' . When emailing the target the install module, you will need either zip the file, embed it into wordpad or send it as a link as most email service providers doesn't allow you to add executables (exe's) as attachments.

To see how to send the spy program as a link see 'Installing spy software with a link'.
To see how to embed the spy program in wordpad, see  'How to remotely install spy software'.

Using a zipped file for the attachment can be a problem when either you or your target is using gmail as gmail will block attachments that contain executables even when they are zipped.

There is however a simple solution to the problem:

Add a password to your zip file

In winrar and winzip you can choose to add a password to your zip/rar file. When you add a passwo…

How to get a username and password

---------------------------------------------------------------------------------------------- Update (2015/07/07):  redpill now has a new and better product available: redpill Hacker

You can also see more up to date articles at:
http://spysoftware.redpill.co.za
-----------------------------------------------------------------------------------------------
This article will explain how to get a username and password for an email account like gmail or yahoo or a social network account like facebook.

In this article we will focus on getting a username and password of another user (the target) on a computer that you have access to. In a following article we will explain how to get a username and password from someone that works on a computer that you do not have access to that might be in another part of the world.

Step 1: Install a key logger

You will need to download and install a key logger that is not easily detected by anti-virus software and that is completely hidden and discreet
redpil…