Following query was sent to me by Nathan about some issues with setoolkit.
Fri, Jul 24, 2015 at 1:40 PM Name: Nathan Comment: I need help with setoolkit. Specifically phishing and site cloning. I did everything I should have, it works on my LAN. but when I send the link to someone outside it takes forever to load and ends up timing out for them. Yes I have done these: -PortForwarded port 80 -Used my external IP -Used a URL shortener (Multiple different ones) Things I probally should NOT have done: -Disabled apache (Cant seem to turn it back on?) Anyhelp would be greatly appreciated :)
Things to investigate:
- What happens if you try the actual IP address instead of URL shortener? i.e. https://1.2.3.4/somepage.html ? Is your cloned site accessible from Internet at all?
- If apache is not running, how is your web server serving pages?
service apache2 start - Instead of having URL shortener forward it to your IP directly, register/use those 0.99$ domains and then do a 301/302 redirect or parked domain …
Timeout mostly points to a routing issue, Firewall or misconfigured server.
Either way, use SET responsibly. It’s a Federal Offense if used for scamming and without permission. Also, it is very easy to track someone down for such activities.
Readers, feel free to join in via the comments section.