Monday, 12 October 2015

How to use a phishing site to retrieve passwords

redpill Hacker is Penetration Testing Software for ethical hackers with various hacking tools. In this article I will explain how the Password Phishing Website tool works.

Password Phishing Website Tool - Click to enlarge
All you need is a Windows hosting option with a Windows Server that supports ASP.NET 4.0. There are a lot of website hosting companies to choose from like godaddy.com (and countless others) where you can get very inexpensive hosting options.

Your 'con' will be to email the target a link to some 'secure content' that will require him to sign in using his social media account (gmail, yahoo, facebook, etc). The secure content can be any youtube video or any other video from any other site. It could also be a link to a PDF or some other content on the Internet.

Below is a break down of how it works:


  1. You specify the custom settings you want in redpill Hacker and redpill Hacker creates the phishing site for you to fit into your specific con.
  2. redpill Hacker sends an email to the target using the Social Engineering Template you selected. The Templates are designed to convince the target to click on the link.
  3. The target clicks on the link to view the video (or other content you selected). He is redirected to the phishing site where he is required to login using his social media account.
  4. After he signed in he is redirected to the video or other content you selected. The redirection is quick so the target will not even realize that he was redirected. He will just think he needed to sign in to watch the video and then will continue to watch the video.
  5. redpill Hacker will then retrieve the target's username and password from the phishing site.''
For a demo of how this works see the video below:


For more information about redpill Hacker or other spy software visit the redpill Website.

No comments:

Post a Comment