Hacking Facebook Using Middle Attack
In this Facebook hacking tutorial using a man in the middle attack will show how hacking Facebook using the orphanage (man in the middle). This attack usually occurs within a LAN (LAN) in the office, Internet cafe, apartment, etc.
The following is a topology or infrastructure how the orphanage work, and how it can happen to do Facebook account piracy.
Facebook hacking using a man in the middle attack:
In the picture above, the attacker acts as the third person attacker will manipulate the routing table switch until the victim will think that the attacker is the Web server and vice versa, because the attacker changed the routing table.
For this tutorial we need to prepare tools to demonstrate a concept about this tutorial. Below you can download the program.
1. ZAMP - Apache + PHP + MySQL (we use our Zamb Facebook fake web server)
2. Kane and Abel (we use it for the man in the middle attack)
3. Facebook offline page (I have canceled the code, so this script will not connect to Facebook when the victim of fake Facebook page access - just use this to learn)
Update: Replace index.php and login.php using the following files upload here.
Step by step hacking Facebook using a man in the middle attack:
Forward address Eb: 192.168.160.148
The victim's address: 192.168.160.82
Counterfeit Web Server: 192.168.160.148
I assume you are in the LAN now.
1. Install Zamb and run Apache and MySQL service
2. Extract the fb.rar and copy the content to
C:\xampp\htdocs
3. Check the fake web server by open it in a web browser and type http://localhost/
4. Install Cain & Abel and do the APR(ARP Poisoning Routing), just see the step by step how to below
Choose your interface for sniffing and click OK. When it’s finish, click again the Start/Stop Sniffer to activate the sniffing interface.
Go to the Sniffer tab and then click the +
(plus sign)You will see the other people in your network, but my target is 192.168.160.82 (MySelf…LoL :p)After we got all of the information, click at the bottom of application the APR tab.Click the + button, and follow the instruction below.When you finish, now the next step is preparing to redirect the facebook.com page to the fake web server.Click "APR DNS" and click +
to add the new redirecting rule.When everything is finish, just click OK. Then the next step is to activate the APR by clicking the Start/Stop APR button.5. Now Hacking Facebook using MITM has been activated. This is how it looks like when victim opened http://www.facebook.com6. But if you ping the domain name, you can reveal that it’s fake, because the address is IP of the attackerHope you found it useful
Download Facebook offline page :
ConversionConversion EmoticonEmoticon