What is Phishing?

Phishing is a method that been sent by the spammer to get details or information about the victims such as Name, Bank Account Details, Phone Number and so on. Shellphish is one of the phishing methods that use any website clone to get the victim’s details. One of the details examples is the spammer will ask the victims to reset the password of their email or login the fake/clone website that the spammer will provide.

How to install and use ShellPhish?

Firstly, the user has to install the ShellPhish tool into Kali Linux by using those command

git clone

Picture of the clone the tools

Example of the progress completed of the installation

Clone tools have been completed

Once completed, the user can go to the shellphish folder by typing cd /shellphish. After entering the folder, Shellphish can be run by using the command bash

Shellphish running

After finished choose the option that tools want, the user can send the link to the victims. The victims will see the following website as below:

Victim’s viewing the website

From the user view, they get to see the IPs and Credentials of the victims information such as below

Credits: The Linux Choice github

Author: Wan Ariff

He brings with him working experience in Information Security filed which specializing in Penetration Testing and Digital Forensic. His passion is more to IT Security

2 thoughts on “ShellPhish

    1. As far I try, shellphish will give link to the victim. You will have to check back the details that you enter before

Leave a Reply

Your email address will not be published. Required fields are marked *