Shellphish -- Simple Phishing Toolkit | Phishing Page Creator

Shellphish is an easy and automated phishing toolkit or phishing page creator written in bash language. This tool is made by thelinuxchoice. Original GitHub repository of shellphish was deleted then we recreated this repository.

There is Advanced Modified version of Shellphish is available in 2020. Click Here to know more about Zphisher.


 Shellphish can perform phishing in WAN (Wide Area Network). Shellphish can create phishing page of most popular social networking sites like,
Shellphish also have an option that we can create custom phishing page. This tool is very easy to setup and use.

To install shellphish we need to open our terminal window and apply the following command :

git clone https://github.com/jaykali/shellphish

This command will clone this tool from Github repository. After cloning is complete, we need to go in the folder/directory of shellphish by using cd command and check the files using ls command as following:

cd shellphish && ls
The screenshot is following:



Now we need to give access permission to the main bash script called shellphish.sh . We are going to use the following command to do this :

chmod +x shellphish.sh
Then we can run shellphish by using following command:

./shellphish.sh
The main menu will appear after running this tool. Screenshot of the command is following:


Here we need to choose a website for phishing by using number, we choose number 2 that is Facebook.
The screenshot is following:


Then we need to choose the port forwarding option. This tool recommend to choose option 1 the SSH tunneling method by Servo.net. We gonna use Servo, so we choose 1.
The screenshot is following:


Then we need to choose the port by default it's 3333, we are going to use the default configuration so we gonna leave this field blank and type enter.
The screenshot is following:


Shellphish will do the rest, it will start the server and make a SSH tunnel. At last shellphish give us the phishing link.
One url will be direct and long url and other will be short url. We recommend to use the direct link because sometimes url shortener banned shorted phishing urls.

Okey now we can send this to victims using some social engineering.
The social engineering part is very crucial for phishing. we need little bit information about about victim. For an example if we know that victim is PUBG lover then we can send this link as a message
Claim your free 80000 UC in PUBG by login your Facebook from this link  https://www.bit.ly/3rcG6
This is is just an example of easy social engineering, and we need to wait for the credentials without closing the terminal.
The advantage of this tool that is this is very very easy to setup.
Now the question comes how to be safe from this kind of attacks ?
First we should not click urls from 3rd party, and we need to active two factor authentication. This tool can't bypass 2FA.
But some advanced phishing tool really can bypass two factor authentication. Read our post Bypass Two Factor Authentication.
author-img
Kali Linux

Comments

55 comments
Post a Comment
  • Unknown photo
    UnknownJuly 31, 2019 at 7:51 AM

    Help! every time i attempt to run shellphish this message pops up "I require php. install it" but i did install it. Im on windows 10.

    Delete Comment
    • Kali Linux photo
      Kali LinuxAugust 1, 2019 at 7:02 AM

      Sorry, Haven't use Windows for a while. But you can try this tutorial

      https://www.jeffgeerling.com/blog/2018/installing-php-7-and-composer-on-windows-10

      Delete Comment
      • AnonymousJanuary 6, 2020 at 9:35 PM

        it runs on linux first of all

        Delete Comment
        • wishes to poorna photo
          wishes to poornaJuly 31, 2020 at 3:55 PM

          type apt update
          next command : apt upgrade
          next command : apt install php
          next command : apt install nano
          write any php program and exit it

          Delete Comment
        • AB photo
          ABJuly 31, 2019 at 6:30 PM

          It’s very informative and you are obviously very knowledgeable in this area. You have opened my eyes to varying views on this topic with interesting and solid content. ISO 9001 toolkit

          Delete Comment
          • Kali Linux photo
            Kali LinuxAugust 1, 2019 at 7:05 AM

            Thanks a lot AB. Hope you have learned something. That is our success.

            Delete Comment
          • Charlesday photo
            CharlesdayAugust 1, 2019 at 1:49 PM

            I really enjoy simply reading all of your weblogs. Simply wanted to inform you that you have people like me who appreciate your work. Definitely a great post. Hats off to you! The information that you have provided is very helpful. Auto Followers IG

            Delete Comment
            • seo pormotion photo
              seo pormotionOctober 23, 2019 at 3:55 PM

              I was reading some of your content on this website and I conceive this internet site is really informative ! Keep on putting up. ISO 27001 toolkit

              Delete Comment
              • Hackhathon photo
                HackhathonDecember 8, 2019 at 6:25 AM


                [*] Send the direct link to target:

                [*] Or using tinyurl: Error


                [*] Waiting IPs and Credentials, Press Ctrl + C to exit...

                this what i got????

                Delete Comment
                • Kali Linux photo
                  Kali LinuxDecember 8, 2019 at 7:20 AM

                  Thanks Hackathon for valuable comment. Shellphish uses serveo.net ssh services to make connection. serveo.net is a free service and lots of user use this may be the server is busy and goes down. This problems happens sometime. Admin's of serveo usually fix it in 72 hours. Stay touched with us

                  Delete Comment
                • AnonymousDecember 10, 2019 at 11:01 AM

                  how do you mkae sure the program is run using tor?

                  Delete Comment
                  • Kali Linux photo
                    Kali LinuxDecember 11, 2019 at 7:39 AM

                    This program is not using Tor. You need to torify your system manually. But we should send the generated URL from anonymous mail or anonymous sms services. There are tons of services available in internet.

                    Delete Comment
                  • Prayas Ray photo
                    Prayas RayJanuary 2, 2020 at 11:56 AM

                    You can order for youtube services on https://www.ytbuyviews.com and get fast youtube views ,subscribers ,likes and comments

                    Delete Comment
                    • Dukhabandhu Tudu photo
                      Dukhabandhu TuduJanuary 6, 2020 at 10:15 AM

                      What an awesome article.. If you want to get this and your other creations promoted then go through https://www.ytviews.in and you will be amazed to see how quickly your work gets advertised with full support and assistance

                      Delete Comment
                      • Mike Johnson photo
                        Mike JohnsonJanuary 22, 2020 at 1:01 AM

                        check out this to buy instagram followers

                        Delete Comment
                        • RJ VIRAJ photo
                          RJ VIRAJFebruary 3, 2020 at 10:46 PM

                          Do you want to grow your audience and views on your youtube channel ?
                          you can easily place order on https://www.tubeviews.in

                          Delete Comment
                          • Suhasi Jindal photo
                            Suhasi JindalFebruary 14, 2020 at 5:25 PM

                            Creatorshala is india's largest community of content creators, if you u are a blogger,influencer and youtuber, you can create your creators account on https://www.creatorshala.com/

                            Delete Comment
                            • Unknown photo
                              UnknownMarch 16, 2020 at 10:10 AM

                              the url just work in my own pc which installed kali but in other pc and phone do not work. why just it work in their own pc and the link dosent work in other pc and phone?

                              Delete Comment
                              • Kali Linux photo
                                Kali LinuxMarch 16, 2020 at 1:38 PM

                                It is working on local Network. You need to forward your port from router settings or try our new article on it https://www.kalilinux.in/2020/03/port-forwarding-without-router-2020.html

                                Delete Comment
                              • Jennet photo
                                JennetMarch 27, 2020 at 4:31 PM

                                Setup is a significant advance and the guidelines ought to be followed intently. The last advance is transfer any records that you need to be gotten to on the wiki page Wikipedia page creation

                                Delete Comment
                                • Unknown photo
                                  UnknownMarch 31, 2020 at 6:50 AM

                                  Can you provide tutorial on creating your own custom phishing page? Thank you

                                  Delete Comment
                                • Deepa Chauhan photo
                                  Deepa ChauhanMay 4, 2020 at 12:36 PM

                                  You can increase your youtube, Instagram, TikTok, IGTV, FB video, post, channels views, likes, followers, subscribers, and many more with our high retention fast views service. Buy from India's No.-1 promoting website https://www.ytviews.in/ with 24/7 support, Moneyback guarantee, easy order system & 100% secure.

                                  Delete Comment
                                  • AnonymousMay 16, 2020 at 4:43 PM

                                    After launching the tool and choosing option two(2) so that I can setup my server it doesn't allow me instead it uses ngrok server and create a link, what could be the problem?

                                    Delete Comment
                                  • Unknown photo
                                    UnknownMay 23, 2020 at 1:02 PM

                                    can you tell me any codes to do this with windows powershell

                                    Delete Comment
                                    • Kali Linux photo
                                      Kali LinuxMay 23, 2020 at 6:20 PM

                                      This is a bash script can be run on windows powershell but need a lot of modification on the script. Windows and UNIX use different end-of-line characters, and the Windows file system is accessible in a different location in the Bash environment.

                                      Delete Comment
                                    • Unknown photo
                                      UnknownJune 9, 2020 at 4:37 AM

                                      I don't have serveo.net as options. It just download with ngrok automatically. Can you help?

                                      Delete Comment
                                      • Kali Linux photo
                                        Kali LinuxJune 9, 2020 at 11:42 AM

                                        ignore this issue because serveo goes down maximum time. Serveo is good service but being a free service the server goes through heavy traffic and the server fails. ngrok is a better option.

                                        Delete Comment
                                      • shivanshJuly 5, 2020 at 12:54 PM

                                        every time when i go to install shellphish it ask for github account username and password, please help me whayt to do

                                        Delete Comment
                                        • Kali Linux photo
                                          Kali LinuxJuly 5, 2020 at 8:28 PM

                                          Yes, the original creator of shellphish is deleted the repository from GitHub. We have re-uploaded this in our Github repository. Thanks for notice this issue. We also have done changes in this tutorial please follow it again.

                                          Delete Comment
                                          • AnonymousJuly 9, 2020 at 6:03 AM

                                            "send this link to the target:" is not showing any link. Any help?

                                            Delete Comment
                                            • Kali Linux photo
                                              Kali LinuxJuly 9, 2020 at 8:01 AM

                                              This tool used free servers and those servers are very busy. You need to try after some time.

                                              Delete Comment
                                            • Sirzay photo
                                              SirzayJuly 18, 2020 at 12:01 PM

                                              yes... Thanks :)

                                              Delete Comment
                                              • AnonymousJuly 24, 2020 at 12:54 PM

                                                Thanks for share

                                                Delete Comment
                                                • AnonymousJuly 28, 2020 at 1:28 AM

                                                  I couldn't get the target link: its empty
                                                  How to get this link ?

                                                  Delete Comment
                                                  • Kali Linux photo
                                                    Kali LinuxJuly 28, 2020 at 8:09 AM

                                                    Try again... We just check it after your comment. It is working good. Looks like you need good network connection.

                                                    Delete Comment
                                                  • jimmyboyz420 photo
                                                    jimmyboyz420August 10, 2020 at 11:27 AM

                                                    web designing tools Natnit Blog

                                                    Delete Comment
                                                    • AnonymousAugust 11, 2020 at 10:01 PM

                                                      [*] Starting php server...
                                                      [*] Starting ngrok server...
                                                      [*] Send this link to the Target: https://7d85f90cee43.ngrok.io

                                                      [*] Or using tinyurl: http://tinyurl.com/y4zrwz2b

                                                      This is what I get. isn't it supposed to be Serveo?

                                                      and I get connection ingormation like IP and ASN, location but never the credentials

                                                      Delete Comment
                                                      • Kali Linux photo
                                                        Kali LinuxAugust 12, 2020 at 8:02 AM

                                                        Serveo servers are good but sometimes they ware down, and you are not getting credentials why? The victim may not input the credentials.

                                                        Delete Comment
                                                        • AnonymousAugust 16, 2020 at 7:42 PM

                                                          As the majority use facebook app on their smart phones, they do not have to enter the credentials every time they use the app....is there a way to hack the app?

                                                          Delete Comment
                                                          • Kali Linux photo
                                                            Kali LinuxAugust 16, 2020 at 11:58 PM

                                                            Here the Social Engineering steps in. We agree that most of people uses Fecebook from the app but when some website asks Facebook identification for login then it doesn't open the app. This requires to be done in the browser. So we can trick them on that way to get success. Hacking the app requires very pro level mastermind in this field. Facebook is not so dumb. But we can easily make fool a human's brain.

                                                            I know a guy who uses casino type website and everyone wins there. To get paid the winner need to share the result to his Facebook friends and there was a phishing login page. Winner never got his bucks but that guy got something.

                                                            This is not the end that guy is in jail now. We never support or promote crime.

                                                            Moral of this story: Social Engineering can brakes any security system, and criminals will be punished.

                                                            Delete Comment
                                                          • Unknown photo
                                                            UnknownAugust 19, 2020 at 11:42 AM

                                                            Can't get link to send

                                                            Delete Comment
                                                            • Kali Linux photo
                                                              Kali LinuxAugust 19, 2020 at 10:54 PM

                                                              Which method you have tried serveo or ngrok? Serveo server seems to be down. These kind of free services faces these problems. It happens with them sometimes. You should wait for their server come back online. Or host these pages on localhost and try portmap. Both these tutorial is available on our website.

                                                              Delete Comment
                                                            • Aldy Rian photo
                                                              Aldy RianAugust 28, 2020 at 4:43 PM

                                                              Need username and password to install

                                                              Delete Comment
                                                              • Kali Linux photo
                                                                Kali LinuxAugust 28, 2020 at 6:24 PM

                                                                This only shows when you have typed wrong git URL in git clone command. Kindly check the command's spelling and try again.

                                                                Delete Comment
                                                              • Unknown photo
                                                                UnknownSeptember 16, 2020 at 5:08 PM

                                                                Can anyone help me... I cannot find the link to send to the victim it's showing blank there... What to do?!?

                                                                Delete Comment
                                                                • Kali Linux photo
                                                                  Kali LinuxSeptember 17, 2020 at 6:59 AM

                                                                  This is because serveo servers seems to down. You should host it on localhost and use localhost.run for port forwarding.

                                                                  Delete Comment
                                                                • mo photo
                                                                  moSeptember 27, 2020 at 3:31 PM

                                                                  its worked on my kali but where can i find the saved password? i opened the saved.usernames folder but its showing me notihng. Can anyone help me :)?

                                                                  Delete Comment
                                                                • Kali Linux photo
                                                                  Kali LinuxSeptember 27, 2020 at 5:12 PM

                                                                  It can happen that the target did not fill the passwords section and clicked login. Did you tried it against yourself? Then everything will be clear.

                                                                  Delete Comment
                                                                  • Unknown photo
                                                                    UnknownNovember 16, 2020 at 7:25 PM

                                                                    bro im sorry but he dont give me a link to sen to victim idk why its only says we are waiting to victim open link

                                                                    Delete Comment
                                                                  • AnooooDecember 26, 2020 at 3:27 AM

                                                                    Quand je clique sur le lien à envoyer à la victime ça me met "something went wrong" alors que j'ai utilisé Ngrok

                                                                    Delete Comment
                                                                  google-playkhamsatmostaqltradent