Wednesday, 23 October 2013

// // 1 comment

Hack facebook account- How to hack facebook account without any software


Many questions like
"How to hack facebook account online"
"How to hack facebook without software"
and etc etc
Note:- This tutorial is for educational purpose only and may not be used for any blackhat purpose. The prime aim of this tutorial is to create awareness so that you guys can protect yourself from getting hacked.
Before learning the actual procedure you should know about different types of attacks, their drawbacks and prevention against these attacks .

 Ways to Hack a Facebook Account | Facebook Hacking
1) Phishing :
The first and very basic way of hacking Facebook accounts is via Phishing. Phishing is actually creating fake web pages to steal user’s credentials like email,passwords,phone no,etc.

DRAWBACK :
Users nowadays are aware of these type of attacks and one can not be easily fooled using this attack. You need some social engineering to trick someone.

Prevention :

Always check the page URL before logging in. This is the most trusted and effective way one can use to avoid himself from phishing.

Other way is to use some good Antivirus software which will warn you if you visit a harmful phishing page.
Even if somehow you have already entered your credentials in a phisher, Immediately Change your password.

2) Keylogging :
This is another good way of hacking Facebook accounts. In this type of attack a hacker simply sends an infected file having keylogger in it to the victim. If the victim executes that file on his pc, whatever he types will be mailed/uploaded to hacker’s server. The advantage of this attack is that the victim won’t know that hacker is getting every Bit of data he is typing. Another big advantage is that hacker will get passwords of all the accounts used on that PC.

DRAWBACK :
Keyloggers are often detected as threats by good antiviruses. Hacker must find a way to protect it from antivirus.

Prevention :

Execute the file only if you trust the sender.
Use online scanner such as novirusthanks.org
Use good antivirus and update it regularly .

3) Trojans/backdoors :
This is an advanced level topic. It consists of a server and a client. In this type of attack the attacker sends the infected server to the victim. After execution the infected server i.e. Trojan on the victim’s PC opens a backdoor and now the hacker can do whatever he wants with the victim’s PC .

DRAWBACK :
Trojans are often detected as threats by good antiviruses. Hacker must find a way to protect it from antivirus.

Prevention :

Execute the file only if you trust the sender.
Use online scanner such as novirusthanks.org
Use good antivirus and update it regularly .

4)Sniffing
It consists of stealing session in progress. In this type of attack an attacker makes connection with server and client and relays message between them, making them believe that they are talking to each other directly.

DRAWBACK :

If user is logged out then attacker is also logged out and the session is lost.
It is difficult to sniff on SSL protected networks.
Prevention :

Always use SSL secured connections.
Always keep a look at the url if the http:// is not changed to https:// it means that sniffing is active on your network.

5)Social Engineering :
This method includes guessing and fooling the clients to give their own passwords. In this type of attack, a hacker sends a fake mail which is very convincing and appealing and asks the user for his password.
Answering the security questions also lies under this category.

Drawback :
It is not easy to convince someone to make him give his password.
Guessing generally doesn’t always work ( Although if you are lucky enough it may work!).

Prevention :

Never give your password to anyone
Don’t believe in any sort of emails which asks for your password


6) Session Hijacking
In a session hijacking attack an attacker steals victims cookies, cookies stores all the necessary logging Information about one’s account, using this info an attacker can easily hack anybody’s account. If you get the cookies of the Victim you can Hack any account the Victim is Logged into i.e. you can hack Facebook, Google, Yahoo.

Drawbacks :

You will be logged out when user is logged out.
You will not get the password of the user’s account.
Will not work if the user is using HTTPS connections.

Prevention :

Always work on SSL secured connections.

Always keep a look at the url if the http:// is not changed to https:// it means that sniffing is active on your network.

so these were popular ways of hacking a facebook account 
but today in this post i ' m going to tell you about the best and the most trusted method yet to hack a account that is PHISHING / FAKE LOGIN PAGE
this is the easiest method yet by hackers 
but for this method one needs a talent of convincing the victim to open the link given by the hacker 

Phishing is the most widely used hacking method for hacking Facebook passwords. The most widely used technique in phishing is the use of Fake Login Pages, also known as spoofed pages. These fake login pages resemble the original login pages of sites likeYahoo , Gmail, MySpace etc. The victim is fooled to believe the fake facebook page to be the real one and enter his/her password. But once the user attempts to login through these pages, his/her facebook login details are stolen away. However phishing requires specialized knowledge and high level skills to implement. So I recommend the use of Phishing to hack facebook account since it is the easiest one. 
please dont ever get involved with fake tricks spams which guarantee to hack a facebook account there are no such sofwares or online websites which can really hack a facebook account
steps to hack Facebook account through phishing :-
step 1 you have to register to a free hosting site like www.1freehosting.com,www.byethost.com,www.t3 Step 2 
Now login to your online hosting account go to "control panel" then in site management option go to "online file manager" and open the folder "htdocs"
step 3
download the phishing pacakge and extract the file. Inside the folder you will find three files index.php and hello.php and login_again.htm.

                 PHISHING PACKAGE
step 4
Now replace the index.php file in the "htdocs" of the "online file manager" with the file index.php of the phisher folder in your computer and also upload hello.php and login_again.htm files in "htdocs" that's it! you are done

Step 5) 
Now your homepage www.yourname.byethost.com has become a phisher. open it, you will see that your page www.yourname.byethost.com has become the login page of the site you want to hack.now all you have to do is send this link to the person whose account you want to hack.when he tries to login through it you will receive a file password.html in your "htdocs" folder of your phpnet.us account which contains the username and password of your victim..
my advice make your url something similar like used in Facebook for example www.facebook123.byethost.com so the victim will think that this is a link related to Facebook 
Step 6)
Go to http://www.yourname.byethost.com/lol.htm for see the stored passwords ! you will get passwords like this 

Personal Note:- The attacker must have a very good convincing power to hack the Facebook password with this method. Please try this method carefully as now it is widely known and the target may soon guess the attacker's intentions. The target may report the fake site and you may get in trouble.


The Facebook does not allow to share your fake Facebook site on Facebook. You can use Domain hiding system to share your fake Facebook site. (Eg: http://www.dot.tk/)
 
Using a domain means the address will replace with a new one with which u will be able to gain trust of the victim
so this was the easiest method hackers do to Hack a facebook account





1 comment: