Problem with harvesting credentials - Credential Harvester Method #448
Comments
|
Some sites have strange ways of handling post params and SET doesn't necessarily know all of the variations. It's possible that the POST params are strange and not properly posting to the SET harvester. The behavior your experiencing there sounds just like that, refreshing to the legitimate site is normal once the post has been set. I would recommend turning APACHE_SERVER to ON under /etc/setoolkit/set.config, then once the site is cloned, go into index.html and look at where the POST params are and rewrite them to post to the SET server and test accordingly. |
|
I'm cloning gmail, everything works fine up to the point where you enter email, and then it won't redirect to the password page.
Regards, |
|
KALI LINUX 2017.1 setoolkit Credential Harvester Attack Method cloning website Error 501: Not Implemented error shows pls help me |
|
You need to reinstall Kali as you are not on Kali rolling, go to kali.org to get up to date iso.
…________________________________
From: sriniv398 <notifications@github.com>
Sent: Thursday, September 14, 2017 1:01:57 PM
To: trustedsec/social-engineer-toolkit
Cc: Subscribed
Subject: Re: [trustedsec/social-engineer-toolkit] Problem with harvesting credentials - Credential Harvester Method (#448)
KALI LINUX 2017.1 setoolkit Credential Harvester Attack Method cloning website Error 501: Not Implemented error shows pls help me
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub<#448 (comment)>, or mute the thread<https://github.com/notifications/unsubscribe-auth/ADddQp0fg6dBa0PDhMMzLeUKNe5sRA15ks5siRW1gaJpZM4OuSRi>.
|
|
i am already re-intsall kali |
|
I am not understand pls refer me detail |
|
When I use credential Harvester > site Cloner in my LAN environment it works fine that means, it returns 1) POSSIBLE USERNAME FIELD FOUND, 2) POSSIBLE PASSWORD FIELD FOUND, 3)Redirects to actual site. BUT when I use the same method on WAN it returns some arbitrary data and comes to the last line "WHEN YOU HAVE FINISHED......." I am using kali-rolling 2017.2, SET version 7.7.2 and NO PROBLEM with port forwarding. |
|
You need to use your external IP address not your NAT'd address. This is networking not a SET issue... External users from the outside browsing a site won't know where to hit or to post to if you don't specify the external interface when prompted for the NAT address. |
|
I am using VPN service and enabled remote port forwarding from port 9366 to local port 80. My test victim is connecting using my external IP (the ip i get from whatismyip.com after connecting with VPN) as x13.x82.1x1.24x:9366. I also tried by changing the WEB_PORT=9366 in /etc/setoolkit/set.config and changed ETTERCAP_INTERFACE from eth0 to tun0(interface of my external ip) ; but in both cases I get the facebook login page but no credentials returns. In SEToolkit it returns some arbitrary data and the last line "WHEN YOU HAVE FINISHED.......". If I dont use VPN (open local and external port 80 from my router) it works fine like LAN. But I need to use VPN to test. |
|
OK, With Remote Port Forwarding from my VPN and keeping all default in set.config I was able to get the credentials by entering my VPN IP and port in the field It returns back the credentials I entered in the fake website but after clicking login button it is forwarding to xxx.xxx.xxx.xxx:9366/login.php?login_attempt=1&lwv=100 whereas it supposed to forward to the original site. |
|
I have the same problem with my Kali Linux 2017.3 if you find any solution kindly inform me please |
|
same here |
|
Take a look at whats contained within post.php, that is where the redirect should be occurring, also check /etc/setoolkit/set.config ensure AUTO_REDIRECT=ON |
|
please i have an issue, i recently just installed Kali Linux on my mac via VMware my Kali Linux is working fine but anytime i try the setoolkit and i send the link the person i sent the link to will say it is not opening"web page not available" please help me |
|
@Tijanempire you will be using the local ip address of yours for setoolkit it will work only on localhost not on WAN |
|
@samsingham what kind of port forwarding are you using ,can you send the error message |
|
@sumon1142 use ngrok with port forwading ./ngrok http 80 and use the line after the http in the ip place while cloning youll get the output what you wanted enjoy! but hacking is illegal nobody here promotes hacking |
|
I have been trying to create a website using the Credential Harvester tool and it is taking forever to create. What could be the issue? |
|
@benseshi I got the results using ngrok, but the problem is that while directing to ngrok server . I'm not able to see the pictures it's just a HTML file .in black and white . |
i have a problem in my device i am getting the clonned site but in my friends device its not showing anything any one help please |
|
I am using ./ngrok http 80 PLEASE HELP. I can't find solution anywhere!!! |
|
Hi, Prajwal. |
|
i used the local ip but the result is same |
3 similar comments
|
i used the local ip but the result is same |
|
i used the local ip but the result is same |
|
i used the local ip but the result is same |
|
i created a cloned website and i want to test it but i cant open the url in other devices then how can i send it to others. |
|
Not too sure where to post this, just wondering why I got this Binary text which translate to "you really have too much time on your hands" |
Brother Facing Same issue have uh solved that? |
Hello please are you able to solve your problem I have similar issues |
and others
I am having an issue with the CHM. Whenever someone enters their credentials into the cloned website, the page simply refreshes, and redirects them to the actual login page of the website which I cloned. After a user enters their details, they are not taken to the expected next page, and no error is shown, it simply just redirects them to the actual login page.
How can this be fixed? Is this inevitable and is there any way to fix this?
The text was updated successfully, but these errors were encountered: