Nayan Das

Phishing is one of the most common attack vectors in cybercrime. In this post, we’ll walk through how phishing websites are created using: Kali Linux (Ethical hacking OS) SET Toolkit (Social Engineering Toolkit) Serveo (Port forwarding to expose local host online) ShadowLink (URL masking tool to make malicious links look legit) You’ll see exactly how attackers can craft phishing pages, host them online, and disguise the links to look harmless — and you’ll learn how to detect and defend against it. DISCLAIMER: This guide is intended purely for educational and awareness purposes . The techniques shown are commonly used in cyber attacks, and this walkthrough is meant to help readers understand how phishing works so they can protect themselves. Do not perform any of these techniques on real systems or without proper authorization. Cybersecurity education is about prevention — not exploitation. Tools Used: 🔹 Kali Linux 🔹 SET Toolkit 🔹 Serveo.net (SSH-base...

Explore how weak OTP implementations can be tested and bypassed in a legal, controlled environment using Kali Linux tools and Burp Suite. This educational guide is intended for ethical hackers and cybersecurity learners. In this blog post, I will walk you through a step-by-step demonstration of an Email OTP (One-Time Password) bypass , conducted purely for educational and ethical testing purposes . The entire process was performed in a controlled environment using legal and publicly available tools and test websites. The goal is to raise awareness about the importance of secure OTP implementations and how weak setups can be vulnerable to brute-force techniques. 🧰 Tools & Resources Used Operating System : Kali Linux Proxy Tool : Burp Suite Community Edition Temporary Email Provider : Temp Mail Test Environment : Expand Testing – OTP Login Page Terminal Commands : Crunch, touch, cat ⚙️ Methodology Accessed a Demo OTP Login Page Using the practice site at pra...