Steps Involved:
- Open a terminal in Kali Linux and type “setoolkit” to launch the SEToolkit.
- In SEToolkit, select option 1 to “Social-Engineering Attacks”
- Select option 2 to “Website Attack Vectors”
- Select option 3 to “Credential Harvester Attack Method”
- Enter the IP address or URL of the website you want to clone, and then select option 2 to
“harvest” - SEToolkit will now clone the website and provide you with a new URL to use for the phishing
attack. Share this URL with the target. - Once the target enters their login credentials on the phishing site, SEToolkit will display the
harvested information in the terminal. - To stop the attack, select option 99 to “Return to the Main Menu”
Note: It’s illegal to practice Social Engineering without permission, this exercise is for educational
purposes only.
Reference:
SEToolkit: http://www.social-engineer.org/framework/SEtoolkit_usage.html
