In this video we will go on a little phishing trip! I will show you a two phased approach how a hacker can potentially launch a phishing attack against their victims. We will be using two tool, the first is ZPhisher, a phishing automation script, that allows us to host various login pages to harvest user credentials. The second tool is the Social Engineering Toolkit (SET), which allows us to insert payloads and launch phishing email attack campaigns against our target. We will also discuss some ways to prevent phishing through general awareness and using tools like spam filters and endpoint protection.
As always, this is for educational purposes ONLY, so please don’t try any of these tools or techniques outside of your lab environment, unless you have the explicit permission of the system owner to perform such penetration tests.
I Hope that you enjoy this video, and if you do it would be much appreciated if you like and subscribe!