Pages

Tuesday 7 May 2019

HiddenEye - Best Advanced Phishing Tool For Termux

 

Hello guys, termux is Terminal emulator and Linux environment for Android. It is a free and open code that simulates the command shell used in Linux. 
In this article, I want to share and take you through one of the best social media phishing tool that can be used in termux to get victim social media credentials. 

HIDDENEYE

Modern Phishing Tool With Advanced Functionality
PHISHING | KEYLOGGER | INFORMATION_COLLECTOR | ALL_IN_ONE_TOOL | SOCIALENGINEERING
Open Source Love GitHub version
Made By Hipsters
  1. ANONUD4Y (https://github.com/An0nUD4Y)
  2. USAMA ABDUL SATTAR (https://github.com/usama7628674)
  3. sTiKyt (https://github.com/sTiKyt)
  4. UNDEADSEC (https://github.com/UndeadSec)
  5. Micrafast (https://github.com/Micrafast)
  6. ___________ (WAITING FOR YOU)

SCREENSHOT (Android-Userland)

Shot

CREDIT:-

  • Anonud4y ( I don't remember if i have done Anything )
  • Usama ( A Most active Developer)
  • sTiKyt ( Guy Who recustomized everything )
  • UNDEADSEC (For His wonderful repo socialfish which motivated us a lot)
  • TheLinuxChoice ( For His Tools Phishing Pages )

TESTED ON FOLLOWING:-

  • Kali Linux - Rolling Edition
  • Parrot OS - Rolling Edition
  • Linux Mint - 18.3 Sylvia
  • Ubuntu - 16.04.3 LTS
  • MacOS High Sierra
  • Arch Linux
  • Manjaro XFCE Edition 17.1.12
  • Black Arch
  • Userland app (For Android Users)

PREREQUISITES ( Please verify if you have installed )

  • Python 3
  • Wget from Python
  • PHP
  • sudo

WHAT'S NEW FEATURES

1) LIVE ATTACK
  • Now you will have live information about the victims such as : IP ADDRESS, Geolocation, ISP, Country, & many more.
2) COMPATIBILITY
  • All the sites are mobile compatible.
3) KEYLOGGER
  • Now you will also have the ability to capture all the keystokes of victim.
  • You can now Deploy Keyloggers With (Y/N) option.
  • Major issues fixed.
4) ANDROID SUPPORT
  • We care about Android Users, So now we have came with two ways to run HiddenEye in Android Devices.
(A) UserLand App
  • You Have to Download UserLand App. Click Here To Download it.
  • To read more how to set up userland app Read HERE
(B) Termux App
  • You Have to Download Termux App. Click Here To Download it.
  • For Further instruction Check Instructions
  • Termux Users Clone With This Command , Unless Errors may occur during Running.
git clone -b Termux-Support-Branch https://github.com/DarkSecDevelopers/HiddenEye.git

5) NEW LOOK PROVIDED
  • NOW FOCUS EASILY ON TASKS...
6) SERVEO URL TYPE SELECTION AVAILABLE NOW
  • Major issues with serveo is fixed.
  • Now You can choose out of CUSTOM URL and RANDOM URL.
7) LARGE COLLECTION OF PHISHING PAGES ADDED
  • Pages are taken from various tool including ShellPhish , Blackeye , SocialFish .

HOW TO INSTALL IN TERMUX WITHOUT ROOT

$ apt update && apt upgrade
$ pkg install git python php curl openssh grep
$ pip3 install wget
$ git clone -b Termux-Support-Branch https://github.com/DarkSecDevelopers/HiddenEye.git
$ cd HiddenEye
$ chmod 777 HiddenEye
$ python HiddenEye


USAGE

1. When you execute command "python HiddenEye.py" It will open as shown below. Now you need to choose which social media you want to get credentials. In my case, I selected Instagram which is my favourite. 

2. Next Instagram will give you some social engineering options that might convince the victim to go for. Select the one you think your victim will fall for. In my case, I selected autoliker option.



3. It will ask if you want to include keylogger to gather everything that the victim is doing after clicking on the link you will send them. Select yes and press enter


4. Next you will be required to choose a custom url where your victim will be redirected. Choose a url that is similar to the social media home or login page. I entered www.instagram.com.

5. Now choose a server where your url will be hosted. There are two options: Ngrok and Serveo.net. I recommend you use serveo because it is faster and efficient.



6. Next you will choose a custom url that you think will convince your victim to be eager to check on. This is the url that will be shown along with serveo or ngrok, so choose wisely and get something that will make a victim not to ignore your link.




7. Next step, HiddenEye will generate a link ready to be sent to the victim. This link will direct the victim to the social media login page where they will enter their credentials (username and password). The moment the victim enters his/her credentials, you will get to see them as show below.




There are other tools like shellphish, weeman that do the same job but this one is the best and most advanced phishing tool one can use in termux. Kindly copy the github link I have provided above. There is another github HiddenEye commands that requires root, so just paste this one which does not require any root to install and use. 

If you find any errors, please do put it in the comment section below for you to be helped. Thank you for visiting my blog and happy hacking.

Next
Prev Post
Previous
Next Post
Manzoo Ahmed

About Manzoo Ahmed

Author Description here.. Nulla sagittis convallis. Curabitur consequat. Quisque metus enim, venenatis fermentum, mollis in, porta et, nibh. Duis vulputate elit in elit. Mauris dictum libero id justo.

No comments:
Write comments

Subscribe to Newsletter
© Copyright 2015 techhub riyaz. Designed by Bloggertheme9. Powered by Blogger.