In simple, victim types the URL where our fake page is stored.. This make victim's mind in doubt.
In desktop, victim types the original URL but our fake page shows up. He doesn't have any idea about it. Because URL look same..
e.g: http://www.facebook.com/ will be same as it is...
Requirements For Desktop Phishing:
1. wamp server
2. fake page
i'm not giving links to both of these. you can google it.
After installiing wamp server, 'start all services'.
To open hosts file, run notepad 'as administrator'. And goto C:\Windows\System32\drivers\etc and choose hosts files.
If nothing appeared in the folder, click on all files, where is txt.
After getting it opened, make a lil change in it.
now at the end of the text in hosts file, we enter as follow. And SAVE IT.
We've done all...
Now whenever victim visits http://www.facebook.com/ he'll get onto our fake page and when he'll enter email and password and hit login button.