SocialFish V3 -- Next Genaration Phishing Toolkit | Kali Linux

Phishing is to easiest method to get anyone's social media password. We have learned many ways to do phishing in some previous tutorial like :-

But SocialFish version 3 makes the most easy way. Anyone can create phishing links by some clicks only. Social Fish version 3 have a web based user interface which is more user friendly. The previous version of SocialFish have only command line interface, but previous version is featured with Ngrok integration, for that in previous version we can use our attack over internet but in this version we can attack in our local network only (Don't worry we have a solution please read till end).

The previous version of SocialFish is grate but the latest update have a clean web interface that is very good for beginners.
 
Socialfish v3 phishing toolkit for kali linux

Before installing SocialFish we need to have Python3 and pip3 installed in our Kali Linux system. New versions of Kali Linux comes with Python3. We prefer to read our tutorial about installing pyhton3 in Kali Linux.

We need to clone SocialFish from it's Github repository, to do that we apply following command in Terminal :

git clone https://github.com/UndeadSec/SocialFish
The following screenshot shows the output of the preceding command:

socialfish git clonning


Then we will change our directory to SocialFish by using cd command:

cd SocialFish
We need to install requirements to run SocialFish in Kali Linux. To install requirements we use following command :

sudo pip install -r requirements.txt
 This command will install necessary tools to run SocialFish, this may take a little bit time depending on internet connection. The screenshot of the command is following:

Socialfish requirements.txt


Now we can crate a web interface that will help us to manage our phishing attacks, but we need to configure SocialFish by pick a username and password to login the web interface. We use following command to set a username and password:-

python3 SocialFish.py username your_password
We can choose our username and password in above command.

socialfish v3 pshishing kali linux


Then SocialFish will finish it's settings and we should be able to access the web interface by navigating to the URL http://0.0.0.0:5000/neptune in our browser. The screenshot is following:

socialfish v3 phishing creator login


We can see the login page here we type our username and password that we just set up, and then we click on "Login" to access the SocialFish portal.

socialfish portal phishing kali linux


Inside the SocialFish web interface, we can see many features and important information.

socialfish v3 menu


At the top we can see the field where we can put website for clone, and the website link redirection, and the URL for our attack. For our demonstration we choose twitter.com/login as target and twitter.com will be the redirecting link. If they already logged in, our phishing attack will look like a normal successful login process. After entering both links we need to click the lightning bolt to active the link as shown in the following screenshot.

socialfish v3 set phishing


Now we will open a separate browser window and open the attack link that is http://0.0.0.0:5000

Socialfish v3 phishing kali linux


This Attack link will work for LAN devices. That means this link only work for same network devices. WE can forward it globally via SSH. To know more read our Easy port forwarding using SSH tutorial. We can use Social engineering technique to increase the chance of clicking by target. To know more about social engineering ideas read our Social Engineering tutorial.

SocialFish version 3 is very advanced and simple phishing toolkit. We can edit custom pages even we can include beef-framework browser exploitation attack with phishing page, and much more capabilities comes with SocialFish v3.

If any error comes running SocialFish then try command:

sudo pip3 install -r requirements.txt

instead of sudo pip install -r requirements.txt then run the SocialFish.


SocialFish is developing a mobile based interface to run SocialFish on smartphones. That will make this tool more handy.

How much enjoyed SocialFish v3 tutorial? Please leave valuable comments below or if you have any questions?
SocialFish V3 -- Next Genaration Phishing Toolkit | Kali Linux SocialFish V3 -- Next Genaration Phishing Toolkit | Kali Linux Reviewed by Kali Linux on August 20, 2019 Rating: 5

15 comments:

  1. Getting error: No module named 'flask' while setting up user credentials

    ReplyDelete
    Replies
    1. please try this command:

      pip3 install flask

      Delete
    2. Failed building wheel for PyLaTeX

      Failed building wheel for python-nmap

      Failed building wheel for Flask-Login

      Failed building wheel for nmap

      Failed building wheel for ordered-set

      Failed building wheel for yamlreader

      Failed building wheel for xkcdpass

      Failed building wheel for gnupg

      Failed building wheel for filelock

      Failed building wheel for PyYAML

      Failed building wheel for PrettyTable

      Failed building wheel for psutil

      Failed building wheel for distlib

      Failed building wheel for pyperclip

      Failed building wheel for subprocess32

      Failed building wheel for scandir

      Delete
    3. hi Kushal, are you using Kali ? If yes then try to uninstall SocialFish and try again.

      Delete
  2. Replies
    1. This error comes because python-nmap is not installed. So install it by using:
      sudo pip3 install python-nmap

      Delete
  3. Replies
    1. Use following command to install python-nmap:
      sudo pip3 install python-nmap

      Delete
  4. Replies
    1. login in SocialFish web interface.. the qrcode will be there

      Delete
  5. bash: pip: command not found
    error is coming please help

    ReplyDelete
  6. Traceback (most recent call last):
    File "/root/SocialFish/SocialFish.py", line 3, in
    from flask import Flask, request, render_template, jsonify, redirect, g, flash
    File "/usr/local/lib/python3.9/site-packages/flask/__init__.py", line 21, in
    from .app import Flask, Request, Response
    File "/usr/local/lib/python3.9/site-packages/flask/app.py", line 36, in
    from .sessions import SecureCookieSessionInterface
    File "/usr/local/lib/python3.9/site-packages/flask/sessions.py", line 14, in
    from collections import MutableMapping
    ImportError: cannot import name 'MutableMapping' from 'collections' (/usr/local/lib/python3.9/collections/__init__.py)

    ReplyDelete
    Replies
    1. I also get this type error. Running command

      sudo pip3 install -r requirements.txt

      instead of

      sudo pip install -r requirements.txt

      then

      python3 SocialFish.py

      solved this problem for me

      Delete

Please do not spam here. It is comment box not a spambox. Promotional links are not allowed.

Powered by Blogger.