Site Cloning Using Social Engineering Toolkit:-
- Run kali linux and search social engineering toolkit.
(this fig. for opt. 1,2,3,4) - Open social engineering toolkit and agree the licence agreement.
- 6 option will be shown up illustrating various kind off attack methods.
- Select (1) which is social engineering attacks.
- 10 option will be shown up illustrating various kinds of attack vectors.
- Select (2) which is website attack vectors.
- 8 option will be shown up illustrating various kind of attack vectors.
- Select (4) which is tabnapping attack method.
- 3 option will be shown up illustrating various kinds of attack vectors.
- Select (2) which is site cloner.
- It will ask for IP Address on which the site will be cloned, open the terminal and type ”ifconfig” to check the IP Address. Provide the IP Address of kali machine.
- Now, it will ask for the URL of the website to clone. Input the desired website.
- This will take a little time and starts cloning. If the apache service is not on, it will ask for turning it on. Input with ‘y’ to turn on the apache service.
- Now send the IP Address on which the site has been cloned. Remember, target and attacker needs to be on same network.
- Passwords will stored in directory named ”VAR/WWW” in the log file.
