{"id":2610,"date":"2015-10-03T02:02:30","date_gmt":"2015-10-03T02:02:30","guid":{"rendered":"http:\/\/www.pir8geek.com\/?p=2610"},"modified":"2015-10-03T02:02:30","modified_gmt":"2015-10-03T02:02:30","slug":"weeman-http-server-for-phishing","status":"publish","type":"post","link":"https:\/\/www.jameseduard.com\/?p=2610","title":{"rendered":"Weeman &#8211; HTTP Server for Phishing"},"content":{"rendered":"<p>Weeman &#8211; HTTP server for phishing in python. Weeman has support for most of the (bigest) websites. Usually you will want run Weeman with DNS spoof attack. (see dsniff, ettercap).<br \/>\n<strong>Weeman will do the following steps:<\/strong><\/p>\n<ul>\n<li>Create fake html page.<\/li>\n<li>Wait for clients<\/li>\n<li>Grab the data (POST).<\/li>\n<li>Try to login the client to the original page<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><strong>Requirements:<\/strong><\/p>\n<ul>\n<li>Python &lt;= 2.7.<\/li>\n<li>Python BeautifulSoup 4<\/li>\n<\/ul>\n<p><strong>Install BeautifulSoup:<\/strong><\/p>\n<ul>\n<li><strong>Archlinux<\/strong>\n<pre> sudo pacman -S python2-beautifulsoup4<\/pre>\n<\/li>\n<li><strong>Ubuntu\/Linuxmint<\/strong>\n<pre>sudo apt-get install python-bs4<\/pre>\n<\/li>\n<li><strong>For another OS:<\/strong>\n<pre>sudo pip install beautifulsoup4<\/pre>\n<\/li>\n<\/ul>\n<p><strong>Platforms:<\/strong><\/p>\n<ul>\n<li>Linux (any)<\/li>\n<li>Mac (Not tested)<\/li>\n<li>Windows (Not tested)<\/li>\n<\/ul>\n<p>Note:\u00a0If weeman runs on your platform (Mac\/Windows), please let the author know, or visit the official <a href=\"https:\/\/github.com\/Hypsurus\/weeman\" target=\"_blank\" rel=\"noopener noreferrer\">github.<\/a><br \/>\n<strong>Usage:<\/strong><br \/>\nJust type help<br \/>\nRun server:<br \/>\nFor port 80 you need to run Weeman as root!<br \/>\nHost to clone (Ex: www.social-networks.local):<\/p>\n<pre>set url http:\/\/localhost<\/pre>\n<p>&#8220;&lt;&#8220;form action = &#8220;TAKE THIS URL&#8221;&gt;&#8221;(View the site source and take the URL):<\/p>\n<pre>set action_url http:\/\/localhost\/sendlogin<\/pre>\n<p>The port Weeman server will listen:<\/p>\n<pre>set port 2020<\/pre>\n<p>Start the server:<\/p>\n<pre>run<\/pre>\n<p>The settings will be saved for the next time you run weeman.py.<br \/>\nGet Weeman:<\/p>\n<pre>   git clone git:\/\/github.com\/Hypsurus\/weeman\n<\/pre>\n<p>Credits to: Hypsurus<\/p>\n<p style=\"text-align: center;\"><a href=\"https:\/\/github.com\/Hypsurus\/weeman\" target=\"_blank\" rel=\"noopener noreferrer\">Download Weeman at Github<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Weeman &#8211; HTTP server for phishing in python. Weeman has support for most of the (bigest) websites. Usually you will want run Weeman with DNS spoof attack. (see dsniff, ettercap). Weeman will do the following steps: Create fake html page. Wait for clients Grab the data (POST). Try to login the client to the original<\/p>\n","protected":false},"author":1,"featured_media":2611,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[162,318,278],"tags":[580,581],"class_list":["post-2610","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-information-gathering","category-password-attacks","category-web-application","tag-dns-spoof-attack","tag-phising-attack"],"_links":{"self":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/2610","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2610"}],"version-history":[{"count":0,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=\/wp\/v2\/posts\/2610\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2610"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2610"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jameseduard.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2610"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}