Social Engineering Toolkit (SETOOLKIT)
Credential Harvester using Kali
There's a 2 types of Social Engineering Attack a Human Based and Computer Based, this time we are going to use Computer Based Attack using very good tools in performing Social Engineering Attacks.Requirements:1. An Active Internet Connect.2. Kali Linux (Download)Overview :The Social-Engineer Toolkit (SET) was created and written by the founder of TrustedSec. It is an open-source Python-driven tool aimed at penetration testing around Social-Engineering. SET has been presented at large-scale conferences including Blackhat, DerbyCon, Defcon, and ShmooCon. With over two million downloads, SET is the standard for social-engineering penetration tests and supported heavily within the security community.SET is built-in installed in Kali linux so no problem about the installation, we have 2 ways to access SET.1. We can open using Kali menu Goto Kali Linux > Exploitation Tools >Social Engineering Toolkit> se-toolkit.2.Open terminal and type se-toolkit or setoolkitWe can wait the terminal is loading and we see picture belowStep 1: Type 1 and Enter
![1](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb2e_set-1.png)
Step 2: Type 2 the Website Attack Vectors and Enter
![2](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb3a_set-2.png)
Step 3: Type 3 the Credential Harvester Attack and Enter
![3](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb49_set-3.png)
Step 4: Type 2 the Site Cloner and Enter
![4](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb3d_set-4.png)
Step 5: it will ask you ip you can type ifconfig to see your ip address.
![5](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb4d_set-6.png)
Step 6: Paste you ip
![6](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb45_set-7.png)
Step 7: Enter the site you want to clone like for example: "https://www.facebook.com/"
![7](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb41_set-8.png)
Note: Don't close the se-toolkit terminal because you can received some information from target.Step 8: Go to browser and type http:tinyurl.com and type your ip in the box
![8](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb35_set-10.png)
Step 9: Send the link to your target
![9](https://cdn.prod.website-files.com/63eef1be981a383fb127661f/646a25834f55f3d670d1eb2b_set-11.png)
GotchaNote this is Educational Purpose OnlyRegards from Philippine Security Researcher