ZPhisher -- Advanced Lazy Automated Phishing Script

ZPhisher is an advanced phishing tool-kit it is an upgraded version of Shellphish. It have the main source code from Shellphish but ZPhisher have some upgrade and have removed some unnecessary codes from Shellphish. It is devloped by HTR-Tech . ZPhisher can be run from Kali Linux and also can be run from Android devices using Termux. It is the all-in-one phishing framework in 2020.
ZPhisher -- Advanced Lazy Automated Phishing Script Kali Linux


ZPhisher have lots of phishing pages like:

1) Facebook
  • Facebook Normal Login Page
  • Fake Security Login Method (DarkSecDevelopers)
  • Facebook Voting Poll Method (DarkSecDevelopers)
  • Messenger Login Page (New)
2) Instagram
  • Normal Login Page
  • Instagram Auto Follower Phishing Page (thelinuxchoice)
  • Instagram Badge Verify Method (DarkSecDevelopers)
3) Google
  • Google Old Login Page
  • Google New Login Page
  • Google Voting Poll Method (DarkSecDevelopers)
4) Adobe Login Page

5) Badoo Login Page

6) CryptoCoinSniper Login Page

7) Deviantart Login Page

8) Dropbox Login Page

9) Ebay Login Page

10) Github Login Page

11) Linkedin Login Page

12) Microsoft Login Page

13) Netflix Login Page

14) Origin Login Page

15) Paypal Login Page

16) Pinterest Login Page

17) Playstation Login Page

18) Protonmail Login Page

19) Reddit Login Page

20) Snapchat Login Page

21) Spotify Login Page

22) Stackoverflow Login Page

23) Steam Login Page

24) Twitch Login Page

25) Twitter Login Page

26) Vk Login Page

27) Vk Poll Method (Hiddeneye)

28) Wordpress Login Page

29) Yahoo Login Page

30) Yandex Login Page


 Zphisher also have 4 port forwarding options
  • localhost         (For local network/LAN)
  • Ngrok             (For World-Wide WAN)
  • Serveo.Net      (For WAN)
  • Localhost.run  (For WAN)

Installing on Kali Linux

First we need to clone ZPhisher from it's GitHub repository by using following command:

git clone https://github.com/htr-tech/zphisher
The screenshot of the preceding command if following:

clonning zphisher

Then we need to go inside the zphisher directory using cd command:
cd zphisher
Here we need to give executable permission to the bash script by using following command:
sudo chmod +x zphisher.sh
The screenshot is following.

zphisher permissions

Now we are ready to run it. We can run it by using following command:

./zphisher.sh
Then this bash script lead us to the main menu of the ZPhisher tool as shown in following screenshot:

zphisher main page

Here everything is very clear. For an example we choose 1 for Facebook and press enter.

facebook in this tool

Here we can choose whatever we think easy to trick our victim. For an example we choose 3 for a "Fake Security Login Page".

fake security login page


Now we can choose our port forwarding option. Here If we choose 1 then it will be for our local network (same WiFi or LAN) only, but we can choose the other options like ngrok serveo or localhost.run. (These are all free port forwarding services so sometimes some services may be down for overloading. In that case we need to choose other.)

Here  we choose 2 for ngrok.io. Then we wait for some seconds untill our link generated.


In the above screenshot we can see our link created on ngrok. Now we can send this link to our victim by SMS or mail or by any other way With some catchy social engineering technique.

If our victim opens it then he/she will see something like following screenshots:
phishing 2020
On Desktop

phishing mobile 2020
On Mobile Device


If our victim inputs the username and password then,

we got the password
BINGO!
 We got the credentials of our victim. Now it can be used to login victim's Facebook account.

Installing on Android (Termux)


We also can use it on Android through Termux application. First we need to install Termux from Google Play Store. Then we can open it and run a single command to update download and run the ZPhisher. The single command is following:

apt update && apt install git php curl openssh -y && git clone https://github.com/htr-tech/zphisher && cd zphisher && chmod +x zphisher.sh && bash zphisher.sh

How to be safe from this Attack

  • We should not click on any link through sms/email/website/chatroom or text messages etc.
  • we need to check the link is driving to original Facebook, mean to say check the links is https://www.facebook.com/ or not. If not and the page is looking like Facebook, then this might be a phishing page.
  • Windows user should use anti-virus and web-security software , like norton or McAfee . Linux user should take care before clicking unknown links.
This this tutorial is for educational purpose only. Phishing is a crime. If anyone do any illegal activity then we are not responsible for that.

If you like our tutorial or got an issue regarding this post please comment down, we always be happy to respond. If you liked our tutorials then visit our website regularly and for the quick updates follow us on Twitter and Medium.

27 comments:

  1. Why is my Kali Linux looking different? I enter the first line of code and it says it's not a command. I'm on windows 10, please help.

    ReplyDelete
    Replies
    1. you should install your Kali in proper way.. Uninstall it and read our installation guide.

      A total Guide to install Kali Linux

      Delete
  2. Hi, generated links by zphisher is working of course, but... It's working only for me. Even if i try connect to generated link on another ip it is not working, can't connect. For what i need phishing if it is working only for me? :D

    ReplyDelete
    Replies
    1. Oh i forget to tell that im using a "ngrok.io" in zphisher

      Delete
    2. You should try other methods also, like serveo.net or localhost.run

      Delete

  3. The post is written in very a good manner and it contains many useful information for me.


    gexton security app

    ReplyDelete
  4. Please, I'm done with the command, everything is done but it's not showing any url

    ReplyDelete
    Replies
    1. you should try it on localhost. If the localhost is working on your own network then it is because of port forwarding services. The services are free so the servers goes down sometimes.. Wait for some hours and try again. nogrok is good you should try ngrok.

      Delete
  5. How to uninstall zphisher in termux

    ReplyDelete
  6. It is giving an error respiratory not found

    ReplyDelete
    Replies
    1. We think you have typing mistakes please check the command and try again.

      Delete
    2. I am using ngrok port but it is taking too much time to intialize and not giving me the link and others port is also not working

      Delete
    3. These ngrok and other services are free to use so they are over-loaded many times. Try after some times or buy a paid service from ngrok. We usually use portmap for our own uses.

      Delete
  7. it says that i dont have the php installed how can i fix that i am new to this

    ReplyDelete
    Replies
    1. I fixed that problem and the only problem i have now is that the link is not appearing

      Delete
    2. Which port forwarding services you have tried? Serveo ? Serveo may be down you can try others? Or you can host them on localhost and run port forwarding services manually.

      Delete
  8. i downloaded kalilinux from microsoft store i tried ngork local host and servo.net but link remains blank sometimes it shows cannot read realtime clock invalid argument can u find a fix for this

    ReplyDelete
    Replies
    1. Yes it happens. The problem comes from Microsoft. You installation uses WSL (Windows Subsystem for Linux)method. Check the solution here.

      Delete
  9. i install te program but send a error

    [~] Initializing...(localhost:5555)
    [!] Error [!] Please Install All Packges.

    the only error when i try to install is with the OPENSSH

    ReplyDelete
  10. Is root necessary for android users?

    ReplyDelete
  11. I'm on 2020.3 with zsh, it seems i'm stuck on initializing

    ReplyDelete

Please do not spam here. It is comment box not a spambox. Promotional links are not allowed.

Powered by Blogger.