PHISHING – INSTAGRAM HACKING [PHISHX] – EN SUB

PHISHING – INSTAGRAM HACKING [PHISHX] – EN SUB


WARNING The following video contains techniques and methods that can be dangerous. It’s only purpose is to teach you how to protect yourselves against hackers, therefore, it shouldn’t be used as a mean for a bad end. I won’t be held responsible in any way for problems or incidents. Hi geeks, and welcome back to another video. before starting, I wanted to thank all of you for the support and encouragement you sent me after my last video where I explained my absence many of you told me that they completely understood the reasons I gave for not being as active as usual,
so thank you very much! also, even though I have added a disclaimer at the beginning of my videos, I still wanted to specify that the only goal of what I’m showing you is purely educational and that I don’t want my tutorials to be used for hacking my objective is to explain how hackers proceed so that you can protect yourselves and also for professionals or those who work in the same domain to run a phishing campaign using the tool that I am going to show you so please stop sending me emails and messages telling me that you want to hack a person or a specific company because I will never help you since first of all I am not a hacker and second of all what you are asking me to do is illegal and I won’t put myself in hot water for some stupid demands great, now that I have cleared those points, let’s move on to what this video is all about today my friends, we are going to talk about Phishing, so we are going to install a tool which is considered as one the best in 2018 for everyone who’s watching this video in 2019, don’t worry, this is still relevant for those of you who remember in my footprinting video, we talked briefly about phishing which is considered as a social engineering technique that is used to acquire personal information Phishing means “hameçonnage” in French so just like a fisherman throws his net to catch fish the hacker will try to catch your attention using a fake form or email for example that’s supposed to be sent from your bank, a person or an organisation that you trust this video could’ve been easily called Facebook hacking, Twitter hacking, LinkedIn hacking or Google hacking because all those social media can be hacked by the same phishing tool I am presenting you today the application is called “Phish X”, I will show you how to install it, the possible problems that you can face while installing and how to deal with them. then we are going to have a simulation where I am going to play my own victim we are going to send an email or a message to the victim to make him believe that his Instagram account has been hacked and that for security measures, he should change his password you will see that it’s pretty well made and that even an IT person can fall for it without further ado let’s get started since you know that I prefer to act rather than talk, so let’s do it! for the installation of “Phish X” you can go to “github.com” where you can find all the commands we will go through them one by one and I will explain when you can get some complications and how to deal with them what I have done in my virtual machine is that I’ve created a directory that I’ve called script so that i don’t have to reinstall “Phish X” since I already have it so I am using the command ” cd Desktop/script/ ” to get to my directory and I am typing “git clone” followed by the installation link to start the download it can take up to 2 min to download but it only took 30 sec this time so now I am typing “ls” to be sure that the file is really there I get in my directory using “cd PhishX/ ” then another “ls” to list the contents so we are going to start with the bash file know as ” installer.sh ” to do so we have to have the access rights to avoid being denied the permission of execution we are going to use the command “chmod +x installer.sh” great, now I will be able to execute the bash file you can use two ways “bash installer.sh” or ” ./ installer.sh ” it’s the same thing, then I am going to press “Enter” and it will take from 5 to 10min before completing the installation once done, we have to execute the python script “Phish X” however, to do so, first, you should install the 3rd version of python once done type in the command “python3 PhishX.py” then execute yet it’s highly probable to have an error saying that a module is missing if it happens to you, all you have to do is to type “pip3 install” followed by the name of the missing module once done, retype “python3 PhishX.py” and execute what we have now is the Phish X interface Z-Hacker stands for the person who shared the software You can do the same thing, but it’s not that important just like I’ve told you Phish X offers templates for Twitter Facebook, Instagram, Google, Steam, Github…etc What we are going to do now since we still don’t have access to these templates is to create an SMTP server; the procedure behind the email flow on the internet. to do so, you are going to create a free account on “app.sendgrid.com” once done, click on “Setup Guide”, then “Send Your First Email”, then “SMTP Relay” now we are going to generate an “API”, that’s required to connect to the “SMTP Server” to do so, create whatever key you want, I wrote ” hello411″ we are going to need the information below so copy the “SMTP Server”, and paste it in a notepad we are also going to need a port, let’s choose the ports used by the TLS connections from 25 to 587, I chose 547, but it doesn’t matter as long as you don’t exceed 587 then we are going to move on to the username here we have “apikey” and finally, copy the “API key” you don’t have to try it since it won’t work after this video once back to Phish X, we are going to type in the number “0” then the letter “A” to add an “SMTP Server”, and finally add all the information you can find all the info manually if you get to ” Home/Desktop/script/PhishX/data/smtp.py ” if you want to check if you typed correctly once all the information entered, I am going to restart “PhishX” using the following commands “cd Desktop/script/PhishX/ ” then, “python3 PhishX.py”, and make sure that the letter “p” in “python3” is lower case since it won’t work with an uppercase letter once back to Phish X, we are going to type in the number “0” now we are going to test our “SMTP server”, using the letter “C” for the test, we are going to use an email address, you can write whatever email address you want, it will be used for a ping test a message came up saying that the connection is refused that’s completely normal and I am going to explain to you why to be able to have a connection, we have to deactivate the “TLS connection” to do so we are going to get access to our python code and we are going to mention that we do not want to have a “TLS connection” so we are going to go to ” Home/Desktop/script/PhishX ” then “PhishX.py” as you can see here we have the test mail that should be sent just after the word “+port,” you are going to add ‘-o’, ‘tls=no’ and keep doing the same thing every time you see the term “sendmail” which is going to take a little while This is the second day of my shooting, yesterday when I finished the deactivation of the “TLS connection” my camera went out of power, and since it was already pretty late, I decided to go to sleep, so here we are today for the continuation after deactivating the TLS connection, you are going to restart the “PhishX” tool then use the following commands “cd Desktop/script/PhishX/” and then execute “python3 PhishX.py” now we can test our “SMTP server”
we are going to type in the number “0” then using the letter “C”, type an email address, you can use the same one for both great, now you receive a message saying that the email was sent successfully this means that your “SMTP server” was perfectly configured to recap, you can get two error messages, if you receive a message saying that username is not recognized restart the tool and make sure that your username, password and “SMTP server” are correct if you receive another message saying that the access was denied it means that you still didn’t deactivate the “TLS connection” or that you forgot a part of the code once done, we can start our attack, so I chose Instagram, why not Facebook? well because there is a small problem related to the CSS of the page generated by “PhishX” so the victim will receive an email with a working form but since the CSS is not working then there won’t be any colours…etc aside from Facebook, the test can perfectly work with the other social media now we are going to enter the victim’s username, make sure it’s typed correctly so that the last photo that our victim posted as a profile picture can be charged in the form we can enter the phone number, but you don’t have to since it’ not working for Instagram I am just typing random numbers just for this test the email address is very important, so make sure you’ve typed it correctly type “y” as an answer to the popping question now our attack has been launched the advantages of this technique are that you don’t have to know what type of machine the victim is using, whether it’s a Mac, Windows or Android it won’t matter since this service is happening via Web the pop up that we have now is asking how many SMS you want your victim to receive so I am choosing 1, but as I’ve mentioned before, the phone number doesn’t work for Instagram ok, now that you have these two windows, you can be sure that your victim has received the email I am going to check my mailbox, first I am going to open it from my phone to show you how the form looks like, so as you can see, this is the email that the victim is going to recieve, it says that an alert has been detected and as you can see, the email address is [email protected]… so its pretty easy to get tricked it’s the same thing using a computer, but pay attention to the email address it says [email protected] with Instagram written with an “s” at the end so like I have said before it’s easy to get tricked by it, especially when you read the message it says that a suspicious activity has been detected on your account they also send you and the OS, the time, place and IP address which btw is just fake once the victim clicks on the link, she is going to be redirected to this page which is a very convincing copy of the authentification page then the victim will have to enter her old password, the new one and confirm it once the victim clicks on change password, she is going to receive a message saying Thanks for securing your account, so obviously this sounds perfect after a few seconds, the victim is going to be redirected to the official page of Instagram so if she doesn’t pay attention to the URL, it’s very easy to get fooled now when it comes to the hacker, he is going to receive the old password as well as the new one and that’s how the Phishing attack works the objective of this video wasn’t to show you how to hack people, but rather how the whole process works to avoid all this, it’s very easy, once you click on the link that was sent to you all you have to do is notice that it redirecting to a fake page, so just check the URL the URL will never be “Instagram.com” since this domain name is already taken if you liked this video, don’t forget to like it leave all your impressions in the comment section down below if you have other tools that can be used for Phishing and you want me to test them on this channel you can also leave them in the comment section for those who want to install and test “PhishX”, if you get any error messages just leave them in the comment section we will try to guide you. however, I don’t want to receive emails or messages saying that you are not able to hack a person using the technique that I have presented with that being said, see you next week with another video. Take care and goodbye!

100 Comments

  1. Waked XY says:

    Attention, petite erreur, la connexion TLS n'utilise pas les ports entre le 25 et le 587 mais utilise soit le port 25 soit le 587 d'ou l'utilité de désactiver la connexion TLS comme dans la vidéo si vous avez choisi un port aléatoir . Merci à "Elise Muriot" pour la remarque

  2. geodude9537 says:

    very good tutorial, thank you, no stupid music, loved it

  3. Julien Faujanet says:

    J'ai un : FileNotFoundError: [Errno 2] No such file or directory: 'sendemail': 'sendemail'

  4. Nzo 28 says:

    Slt c’est quoi le logiciel de machine virtuel stp

    Et aussi fais une vidéo de ton logiciel

    Merci d’avance

  5. Play Spot says:

    slt Waked un conseil la prochaine fois ne fait pas de ctrlF mais tu peut utiliser l’outille "remplacer"
    mais je te kiff tropppppp:)

  6. DM Hacking says:

    Salut waked peu tu m'aider s'il te plaît, je suis bloqué à l'erreur que tu nous as parlé justement et malgré le fait que j'ai installé python 3 ça ne change rien pourrait tu m'aider please

  7. Casa blan says:

    J'ai essayé mais ça marche pas tout est bon juste au moment quand je fais lancer l'attaque ça revient sur le script (la première page) les fenêtres ça s'ouvre pas

  8. Ozz! says:

    bonjour j ai un probleme il me dise qu il me manque le module request apres j ecrit pip3 install request et sa m ecrit could not find a version that satisfies th requirement requetes from version
    Ducoup jsp comment faire ps merci d avance

  9. C'est moi Antoine says:

    C'est quoi la musique de fond?

  10. Nil says:

    j'ai une erreur :
    Mar 31 22:23:27 kali sendemail[15820]: ERROR => Timeout while reading from smtp.sendgrid.net:465 There was no response after 60 seconds.
    [Done] Press Any Key-
    Aidez-moi svp

  11. ScoPaTuMana says:

    J'ai une question, avec HttTrack on peut cloner des sites donc ça veut dire qu'on peut réaliser du phishing avec ?

  12. Dima Openmind says:

    Now with the english subs, i can finally understand!

  13. Claudia Labeaute says:

    ta un accent antillais

  14. POK POK says:

    ces sur linux ?

  15. Mymemo_0 says:

    bro this tool is not working anymore

  16. Jilla Saravanan says:

    is there any1 who can help me to hack an account for me??

  17. Arthur Cherillo says:

    j'ai hacké les pouces bleus

  18. Валентин Ряхов says:

    Esp1onner un compte grace a notre service en v1.216 grace a : YouLocalise . f r

  19. STW_ MonckY says:

    Comment on fait pour contrer un hacker

  20. whit ectoplasme says:

    Je peux fair sa sur termux ?

  21. İbiw Wirinov says:

    bro . is this link work now?

  22. julo05 says:

    Tu peux m'aider stp, pendant l'installation j'ai une erreur de module comme tu l'explique mais je trouve pas le nom du module à installer, sa me marque sa :
    Traceback (most recent call last)
    File "Phishx.py", line 39, in <module>
    Import requests
    ModuleNotFoundError: No module named 'requests'

    Tu peux m'aider !!???

  23. Nicolas Chrisostome says:

    Ces quoi cette merde tu colle le lien phishx sa te demande l username github et le mdp j y arrive pas aide moi

  24. Ibentheamazing says:

    Quand je tape dans mon terminal «git clone…» ils me mettent: «bash: git : commande introuvalble» quelquent sait comment faire??

  25. Louis Louis says:

    Yo une âme charitable peut m’apprendre les bases du fishing ? Merci de rep au com

  26. Robert Peter says:

    Le sentiment le plus étonnant au monde est lorsque vous mettez enfin la main sur un véritable pirate informatique. J'en ai essayé beaucoup, mais aucun d'entre eux ne m'a traversé et j'ai failli abandonner.

    la poursuite d'un légitime mais quelque chose m'a poussé à en essayer un de plus et je peux dire que c'est la meilleure décision que j'ai prise cette année [email protected] ou

    HACKHAZARD sur Instagram m'a donné exactement ce que je cherchais, c'est pourquoi je le recommande à VOUS de le contacter sur [email protected] ou HACKHAZARD

    sur Instagram pour tous vos travaux de piratage

  27. Clément ROUVIER says:

    quand je fais git clone on me demmande de rentrer le username et les password de github c'est quoi svp? ca vous le fait aussi?

  28. Real Hacker says:

    It’s giving me error when I trying to wrote this
    PhishX/

  29. Thomas Ballesta says:

    sa me demande un username et un mdp aurait tu une solution

  30. Quentin Allier says:

    Et comment tu récupère l’email de quelqu’un à partir d’instagram

  31. YOUTFLIX says:

    Salut jai un problème quand je lance lattaque instagram je ne reçois aucun pop up pourtant tout est bien configurée je ne comprend pas

  32. Dark Blue says:

    Dude, I did exactly what you said, but it's doesn't send mail. I think this system is fake and it doesn't work!

  33. Il-y-ass Cedex says:

    T'es à quelle ecole ?

  34. JUNIOR J says:

    I can confidently refer y'all to @JAYHACK01 on instagram
    because he was able to help me HACK at a reasonable price
    stop wasting you time on videos just like i was doing.
    contact him now……

  35. Oran XD says:

    This software doesn't work anymore

  36. Brawls Stzr says:

    Mais comment tu connais l adresse mail de la victime ?

  37. Adam Lyon says:

    ça a été retiré de github 🙁

  38. Dom Code says:

    Does not work anymore. How can i found some similar tool, please help

  39. Madness says:

    I've tried every single instagram hack tool and only instahax0r worked for me. You can look for it on google.

  40. Goulagman - says:

    Je comprend pas trop l’utilisation de la VM pourrait tu m’aider ?

  41. ꧁༒ᜠGi Ns༒ᜠ꧂ says:

    j'ai rajouté sur tout les 'sendmail' le 'o', 'tls=no', après 20min je quitte sans save le fichier, putaaiiiinnn

  42. prayanshu gupta says:

    Bro please help when I start the attack xterm window will open and it's says control+x to quit after nothing happen please help me sms window not open

  43. salmanlafrite says:

    je veux pas haker je veux faire peur a mon pote

  44. Damian Haul says:

    Be careful who contact for help most people are just out for your info or money @artemy.hack_ are the only serious people I’ve met, Contact +1(513)278-7703. And they say the Russians are dangerous lol good folk

  45. Eva Delgado says:

    Hello, j’ai fais tout ce qui est indiqué dans la vidéo.. Au moment de tester avec mon mail ils m’ont dit que ça a été envoyé avec succès mais j’ai reçue AUCUN mail?😅😅😅 et pareil pour Instagram. J’ai mis mes propres identifiants et ma propre adresse pour tester et ça me dis « Attack has started » puis ca me redirige vers Phish X (aucune autre page ne s’ouvre) et j’ai une fois de plus reçue aucun mail..😭😭

  46. mazain muraj says:

    Timeout while connecting to smtp

  47. Albator S.D.P. says:

    Peut on utiliser le logiciel sous windows ?

  48. Käthe Rut says:

    Nice content, I felt cheated recently and i needed to make sure my instincts were true until i was referred to a hacking company who took care of the hack job. They hacked him ans I’m so glad i had a proven truth that he was cheating. Contact them if you need any of their services on @brandhackers1 on Instagram or chat them up on WhatsApp +19163042321

  49. Aipl Kindi says:

    Bonjour les amis je vous donne ma méthode 99 pour pirater pour cela rechercher ce site sur internet >> YouPirate . fr

  50. Christian Baïssa says:

    comment hacker la nasa

  51. FAZ3W says:

    J ai un problème quand tu clone ton phishX a 3.04 bas sa me demande mon usernam et mon mot de passe sauf que mon mot de passe ne veut pas s écrire

  52. MOVIE AREA RK says:

    noce

  53. Sanam 420 says:

    So nice video

  54. Konda Beat'z says:

    This video is so obviously fake that I can't believe that people today actually get fooled by like this. If you want to hack anyone's Instagram account then definitely use instahax0r. I have no idea what the download link is, however I always find it on one of the search engines 🙂

  55. tony montana says:

    pour les meilleurs services de piratage informatique, il est préférable d’engager un pirate informatique comme je l’ai fait. contactez-le sur instagram son nom est instanthack247_ il est légitime et digne de confiance.,,,,,,,……

  56. GIBBS Gs says:

    salut moi le mail il ne s'envoi pas

  57. GIBBS Gs says:

    Oct 08 13:26:37 kali sendemail[1556]: WARNING => Name/Value pair [xu] is not properly formatted

    Oct 08 13:26:37 kali sendemail[1556]: WARNING => Arguments proceeding -o should be in the form of "name=value"

    Oct 08 13:26:37 kali sendemail[1556]: WARNING => Name/Value pair [apikey] is not properly formatted

    Oct 08 13:26:37 kali sendemail[1556]: WARNING => Arguments proceeding -o should be in the form of "name=value"

    Oct 08 13:26:37 kali sendemail[1556]: ERROR => Received: 550 Unauthenticated senders not allowed

    [Done] Press Any Key-

    C'est QUOI SA SVP

  58. pilniko game says:

    Sur Windows sa marche aussi ?

  59. Goenitz says:

    quand j'essaye de télécharger avec git clone xxxxxxxxxxxx sa me demande Username for and Password for c'est quoi mon compte github ???

  60. INFINITY PLAY says:

    Sa marche sur Windows ?

  61. Tom Dpt says:

    Cr4cker un compte grâce à notre service en v1.088 avec : YOUPIRATE. FR

  62. İbiw Wirinov says:

    bro now is it work?

  63. Raghad Hd says:

    hĀvkēr solution_0102 at īnstāā sent me $3o fōr frēē

  64. Atlantic Song says:

    https://computer-security.fr/quels-sont-les-differentes-techniques-de-phishing/

  65. Flying lota says:

    Sir no module named 'request' not solving

  66. Flying lota says:

    No module found i tryed everything things plz help me

  67. Rayan Ghoudi says:

    Salut, malgrès que j'ai tout bien installer j'ai l'erreur du module manquant. j'ai donc taper la ligne de code suivante ==> pip3 install requests
    Puis le terminal m'affiche ====>Requirement already satisfied: request in usr/lib/python3/dist-packages (2.21.0) Pouvez vous maidé svp merci d'avance

  68. Zellper AMV says:

    Est ce que l on peux fermer le programme en attendant le mot de passe du compte ou il fait rester connectée et attendre qu il clique ?

  69. Vodeni Car says:

    2019?Name of program?

  70. Kotons Automation says:

    subprocess.call(['sendemail', '-f', str(SPEmail),'-t', str(Email), '-u', 'TEST', '-m', 'ITS WORKING!', '-s', smtps+":"+port, '-xu', username, '-xp', password])
    here I m getting error like no folder or directory named sendemail

  71. Mistress Angela says:

    plscan u give me the link? because i cant find dowload PhishX

  72. John Esson says:

    Sa marche sur windows?

  73. Lami Momohjimoh says:

    I got back my disabled account through gregcyber11 on insta He is a pro hacker

  74. Lami Momohjimoh says:

    I got back my disabled account through gregcyber11 on insta He is a pro hacker

  75. EREVEF Himmler says:

    Pour ceux qui veulent pirater ou récupérer votre compte Instagram ou Snapchat contacter [email protected] je l'ai trouver sur un forum sur le Deep web
    Il a récupéré mon compte Snapchat en 2 jours il fait aussi des faux documents, du carding…
    Contacter le il vous explique tout dans les détails

  76. Samy Khed13 says:

    Moi rien de mal je veux hacker mon compte mon ancien compte

  77. PaNdArOx vitio says:

    t'as pas un lien du site ?

  78. elmarocino HÃČĶƏŘØ says:

    Je regarde et je test donc l'intro serre pas trop😂😂😂😂

  79. David Burns says:

    Great tutorial! I’m having issues getting it to work though.. when I run the test for the email everything works perfect but when I go to actually target myself it returns me back to the PhishX menu…

  80. Sarah Davis says:

    I'm so glad
    Cyber Intell on instāgrām got my boyfriend password

  81. Camelia Guessoum says:

    Qui peut pirater un compte snap et insta pour moi svp je le paye c grave urgent

  82. Mathieu Gb says:

    est-ce qu'on peut retrouver l'ip de quelqu'un qui envoie ça ?

  83. René Lucien says:

    Totalement vrai , j'ai passé une formation dans mon entreprise contre le Phishing .

  84. klavye celikten says:

    Il faut avoir le mail de la victime c obligé ????

  85. Omar FLL says:

    Cyberhack_hack375888 is the best

  86. arthur orlyn says:

    Bonsoir le git a ete supp comment faire pour apprendre?

  87. ap3ricube says:

    Salut j'ai un petit souci au moment du test ça me dit there was no response after 60 seconds

  88. klavye celikten says:

    Salut jai un gros problème que je assaye depuis 1 mois le probleme c quand je met git clone ect.. be après ça me demande username passoword avec un @ je met et ça me dit autentificateur pas activer ou un truk commca pls aide mmoi merci

  89. PRANK COLLECTOR says:

    How to get this script

  90. Abdek said says:

    Je suis bloqué dans la partie python
    4:56
    Merci de m’attendre

  91. YS 2500 - Brawl Stars says:

    Pour les gros flemmards zshadow.com plus facile pour prendre un compte insta snap twitters ansi que l’ip de la personne

  92. Al1g says:

    super le tuto mais moi sa me demande un pseudo et un mdp pr le clonage

  93. Dracpixel says:

    On a besoin de connaitre le mail de sa victime ?

  94. bykko dz says:

    salut waked c’ est possibile aussi de faire des bomb sms avec burpsuite ?

  95. alexandr e says:

    Qui la fait ??

  96. ismail el Bouzidi says:

    c'est parfait , j'ai une petite erore quand j'ai installé git clone….. il me demande de "username " et de "password" pourquoi???

  97. arthur orlyn says:

    Bonjour s'il te plait j'ai besoin de ton aide
    Je vroudrais que tu face une vidéo comme se ci mais sur androide avec termux stp certain personne n'ont pas kali linux sûr leur ordi ou n'arrive pas a l'installé stp fait le sur androide j'ai essayé ça sur androide avec kali version androide installe via termux mais ça ne donne pas à la fin merci bien

  98. Memorable Stuff says:

    I got timeout error while checking smtp server "there was no response after 60 secs". Would you help me to fix that

  99. Jean-José FERNANDEZ says:

    Si j’te parle on Privet sur mon insta j’veut parle avk toi

  100. x__fouad_666__x says:

    Stp tu peux me récupérer mon conte insta stp

Leave a Reply

Your email address will not be published. Required fields are marked *