Hello friends 🙋🏻♂️, Nowadays, people are smart enough. They don't get catch under phishing. Because the link does not look like the original website, to enter the details as well. For an example a phishing link may be like, https://Epictechh/xxxrrh, but it opens pages like Gmail or Facebook Login. People got the catch and a user with minimum tech knowledge they do not put the credentials(Username & Password). So it becomes too tough to phish anyone.
I have also provided some details in my previous Nexphisher post where I have mentioned there is a more way to mask the phising website, so we are here to get the tool which will mask our link to look like a genuine link.
Then what to we do?
The answer is Social engineering attack, An attacker needs to be skilled enough in social engineering.
What is Social Engineering?
In short, social engineering is the"bugs in human hardware". 😜, An attacker plays with victim's mind and tricked it.
The hiding phishing links in normal looking trust able links are a bigger part of social engineering. By using this method and trick, based on that attacker owns the trust of the victim, and the victim think that phishing link as a normal link. Because it looks like a top-level domain (like Google, YouTube, Facebook etc.) is considered clean.
How to hide phishing URL?
To make things easier, we're going to use a tool that will convert a phishing link to a normal secure web link which looks like Google or YouTube.
NOTE: This post is only for educational purpose. And this post and website does not support any criminal activity. If you are doing any misuse of this information, this site is not responsible for that. WE ONLY SUPPORT ETHICAL HACKING.
It is a small & simple tool written in bash, named "MaskPhish", This tool is exclusively available on GitHub repository. We can clone this from GitHub repository by using the following command:-
git clone https://github.com/jaykali/maskphis
After the above mention command this tool will be downloaded in system, refer the following screenshot:-
 |
| maskphish cloning from GitHub |
Now we just need to change the directory in to maskphish directory by simply using cd command:
cd maskphish
How to Run MaskPhis in Termux ?
We can run this by using below command:-
bash maskphish.sh
Then MaskPhish will open the main menu in you can refer below screenshot:-
 |
| maskphish main menu |
Now we need to paste our phishing URL here, whatever it is (with http:// or https://).
 |
| Putting phishing URL |
Then We need to put a trusted URL, which can phish victim's mind like https://google.com or https://youtube.com or http://facebook.com. As we did in the following screenshot:
 |
| putting trusted domain |
Now here we need to use some social engineering words separated with "-" for an example if the victim is a football fan then we can use something like best-footaball-skills that tricked victim mind that here we don't use any space.
Then we just enter it, and we get our MaskPhish link. Then We got our URL started with facebook.com and the URL does not have ngrok in URL directly.
Let's open this trusted looking URL(which also contains special words for our target) on our browser are we reached to our destination ngrok (example phishing url).
It might, you get "Warning!".
The warning prompt from browser's security functions. Every method have there own limitations. But in mobile browsers it did not show this warning, it works without any issue.
Alright, Now after click on "Yes" we reached to our phishing website.
 |
| Redirected to phishing page |
This is an example Phishing link, for educational purpose only, and It is a fact that attackers can gain victim's trust by using this kind of URL and many user don't check any warnings and click on "Yes".
When our target is on an Android mobile user, then the warning will not come.
In our suggestion, this is a perfect thing for Social Engineering Attacks. Using this attacker's success rate will get increase, and the attacker gain the trust of the victim by showing off the URL.
There are some more ways to hide phishing URL. Suppose the attacker sending phishing links via email, then there is already an awesome way to hide a URL.
Now the example :
Log in on: https://www.facebook.com/
Now just try to go on Facebook by using the above link !!! It's just an HTML.
There is also Another technique there, which is Google search's redirect method.
This is also easy tricks, the attacker can redirect any URL on Google search as following:
https://www[dot]google[dot]com/url?q=https://www.phishingurl.com
Replace the [dot]s with. And try on browser.
These are the clever ways which are used by attackers while doing phishing attack. But there are more methods (like homograph) to mask a phishing URL on the Internet. To be safe from these, we should not click on any other third party link even it looks like trusted.
Please Never Miss-Use this Tools because it will cause a lot of trouble for you. Stay Ethical Hacker ☺️. Thanks for reading, If you have any query, or you are getting any error while installing the tool then comment down below I will be more happy to help you.