1. Open httprecon.exe to launch the application, the main window will apper

2. Enter website URL that will be footprinted , then select port 80 in target section. Click analyze and footprint result will be shown

3. Scroll down and observe the server used, version, and the server side used to develop webpages. Click the get long request and fingerprint details

4. The details provide the name of the protocol of the website is using and  its version.

Posted by : Raden Aditya Pribadi – CS2020 – 2001605116

1. Open Kali Linux, go to : application – Kali Linux – Exploitation Tools – Social Engineering Toolkit – se-toolkit

2. Type Y to agree to the terms and conditions

3. After that, Menu will be shown and select 1 from the menu

4. List of attack will appears, select 2 for website attack vectors

5. Next step, select 3 for credentials harvester attack

6. Select Site Cloner which is number 2

7. Type IP address of Kali Linux virtual machine and press enter.

8. Enter the URL to clone. This time, www.facebook.com is the example.

9. After cloning completed, it will start  Credential Harvester

10. Allow credentical harvester attack to fetch infromation from the victim machine. Next step, try to send email to the target so he / she can open and fill the website. Edit the link before sending the email like this.

11. Send the email to the target. Now, try to log into victim windows and open the link. Open the site and fill the email and passwords.

12. Click Log in after fill the email & password, then it will redirect to the real facebook log in page but the email and password data that filled already saved at the set terminal kali linux

13. Open Kali Linux terminal to see the result

Posted by :

Bonfilio Aldrino Sugiarto – CS2020 – 2001611794

1. First of all, download Netcraft toolbar at www.toolbar.netcraft.com and follow the installation proccess. Restart your browser after finished the installation

2. After relaunch the web browser, Netcraft Toolbar is now seen in browser window

3. To test out, type in the URL bar : www.certifiedhacker.com , press enter to continue. Then certified hacker web page appears and there will be informations such as risk rating, rank, year of the website launched, also flag.

4. Click site report to see details report of the site

5. If the website you open is identified as an phising site, user will be noticed by the pop up that phising site detected!

\

6. Click Yes to trust the site, but click no as recommend to avoid the phising site. The site will be blocked if you click No

Posted by :

Bonfilio Aldrino Sugiarto – CS2020 – 2001611794