Hello guy’s, Welcome to another article in this article we are going to discuss about how to do HTA Attack method in setoolkit.
What is HTA Attack Method?
The HTA Attack method will allow you to clone a site and perform powershell injection through HTA files which can be used for Windows-based powershell exploitation through the browser.
Step 1: Choose HTA Attack Method
First you type this below command this command will help you to open setookit in your terminal.
Once you open setoolkit tool in your terminal choose first option 1. Social -Engineering Attack Now you can see 10 module but you choose 2nd option website attack vector In this place you can see HTA Attack Method option just choose it.
Step 2: choose phishing website
Once you choose HTA Attack Method in your terminal you can see this below 3 option.
1. web Templates
- This is first method will allow SET to import a list of pre-defined web applications that it can utilize within the attack.
2. Site Cloner
- This is second method will completely clone a website of your choosing and allow you to utilize the attack vectors within the completely same web application you were attempting to clone.
3. Custom Import
- The third method allows you to import your own website, note that you should only have an index.html when using the import website functionality.
Now I choose 2 option site clone but you choose which you want.
Once you select phishing option choose phishing website and IP address also port number see this above image.
Step 3: choose payload
Once you complete above all process choose payload option which you want see this below image.
Step 4: Share link to victim
Once you choose your payload you will get one shareable link. share that link to victim see this below image.
Step 5: Get user information
Once you victim click your link you will get to access session to your terminal see this below image.
NOTE: Don’t choose your local ip address because it’s only work for local network so you choose ngrok it’s work globally