Hacking Facebook account is one of the major queries of the Internet user today. It's hard to find — how to hack Facebook account, but an Indian hacker just did it.
A security researcher discovered a 'simple vulnerability' in the social network that allowed him to easily hack into any Facebook account, view message conversations, post anything, view payment card details and do whatever the real account holder can.
Facebook bounty hunter Anand Prakash from India recently discovered a Password Reset Vulnerability, a simple yet critical vulnerability that could have given an attacker endless opportunities to brute force a 6-digit code and reset any account's password.
Here's How the Flaw Works
The vulnerability actually resides in the way Facebook's beta domains handle 'Forgot Password' requests.
Facebook lets users change their account password through Password Reset procedure by confirming their Facebook account with a 6-digit code received via email or text message.
To ensure the genuinity of the user, Facebook allows the account holder to try up to a dozen codes before the account confirmation code is blocked due to the brute force protection that limits a large number of attempts.
However, Prakash discovered that the social media giant had not implemented rate-limiting in its password reset process on the beta sites, beta.facebook.com and mbasic.beta.facebook.com, according to a blog post published by Prakash.
Prakash tried to brute force the 6-digit code on the Facebook beta pages in the 'Forgot Password' window and discovered that there is no limit set by Facebook on the number of attempts for beta pages.
Video Demonstration
Prakash has also provided a proof-of-concept (POC) video demonstration that shows the attack in work. You can watch the video given below that will walk you through the entire procedure:
Here's the culprit:
As Prakash explained, the vulnerable POST request in the beta pages is:
lsd=AVoywo13&n=XXXXX
Brute forcing the 'n' successfully allowed Prakash to launch a brute force attack into any Facebook account by setting a new password, taking complete control of any account.
Prakash (@sehacure) discovered the vulnerability in February and reported it to Facebook on February 22. The social network fixed the issue the next day and had paid him $15,000 as a reward considering the severity and impact of the vulnerability.
Have something to say about this article? Comment below or share it with us on Facebook, Twitter or our LinkedIn Group.
Categories: Facebook | Internet Passwords and Usernames
In other languages:
Português: Descobrir a Senha do Facebook de Alguém, Italiano: Procurarsi la Password di un Utente di Facebook, Español: obtener la contraseña de Facebook de alguien, 中文: 获得别人的Facebook密码, Deutsch: Facebook Passwort einer anderen Person herausfinden, Français: obtenir le mot de passe Facebook d'une personne, Русский: достать чужой пароль к Фейсбуку, Nederlands: Achter iemands wachtwoord van Facebook komen, Čeština: Jak získat něčí heslo k Facebooku, Bahasa Indonesia: Mengambil Kata Sandi Facebook Orang Lain, हिन्दी: किसी का फेसबुक पासवर्ड पाएँ, العربية: الحصول على كلمة مرور فيسبوك الخاصة بأحدهم, Tiếng Việt: Lấy Mật khẩu Facebook của Người khác, ไทย: เจาะรหัสผ่าน Facebook ของคนอื่น, Türkçe: Başkasının Facebook Şifresi Nasıl Ele Geçirilir, 日本語: 他人のFacebookパスワードを手に入れる
Print
Edit
Send fan mail to authors
Dancing anime gif transparent background. Here you will get genuine tips about hacking of anyone's facebook account id and password along with code and example.
Message before Hacking Facebook Account
This is just a tutorial to make you aware that how any of your account can be hacked just using phishing attack.
This tutorial is based on hacking facebook account with your own code, not for making someone in trouble, therefore don't use the code given here to actually hack anyone's facebook account as this is illegal action.
After reading this tutorial on hacking facebook account, you will feel safe and can put yourself in safer area when operating your account over internet such as facebook, gmail, or even bank account.
You will also understand the result of opening some unknown link sent by anyone, even by your friend.
Now, let's start the tutorial on hacking facebook account id and facebook account password using your own code.
What to do before Hacking Facebook Account
Before start hacking facebook account using this tutorial, you must have some basic idea about following languages:
Now, you are thinking why it is necessary to learn or have some basic idea about the above languages, the answer is, to create login form that looks like same as facebook login page (HTML and CSS used here), and then store user's login credentials in database (PHP and MySQLi used here), and at last redirect users to the original facebook page (JavaScript used here).
Now, i think you have got the idea after reading the above line, that you will hack facebook account just by using phishing attack after reading and implementing the code given here.
If you have already learned the above languages and want to re-check your knowledge then you can give the test such as HTML Test, CSS Test, JavaScript Test, PHP Test, and MySQL Test and can re-check on the basis of result that you will got after giving each and every test.
After reading this tutorial of facebook account hacking, you will be able to implement phishing attack with your own to hack too many facebook account id and password.
Tips to Trap Users to Hack their Facebook Account
There are following tips that teaches you how you can easily trap targetted users to hack their facebook account id and password:
Check what users like most - First of all you must have to check what users like most to make his likable web page to trap him/her and then allow users to open his likable page for example earn money in short time, get tips to make body healthy in just 10 minutes, tips to learn Java in just 30 minutes etc
Check which device, users are using at that instant - Now check that, targetted users are operating in which device either mobile, computers or tablets. You can also implement auto-redirect code in your login page to redirect users to desktop login page if he/she uses desktop
Find the most suitable time to trap users - The last is to find the suitable time to trap your targetted users to send the link and then hack his/her facebook account. Suitable times here in the sense, when users are free, means, when he/she almost can open anything with free mind.
Steps to Hack Facebook Account/Password
Here are the list of steps to follow for hacking facebook account/password:
Make login page that looks same as facebook with perfect title and description along with photo and message
Make login page handler script to store the login credentials in database
Redirect users to original facebook page after storing login credentials
Create Database to store facebook id and password
Now send the login link to the user
Make web page to see hacked facebook account id and password
After sending the login link to your targetted users, you don't have to do after this or second last step, as after this step, your targetted users will start doing for you, that is in indirect words, he/she will automatically give you the facebook account id and password in your database, and you only have to watch in your database whether his/her facebook id and password came or not.
You can also make a web page used to see the list of targetted and trapped users facebook account password along with his/her facebook id.
If you design the last step, that is, a web page that shows the hacked facebook account detail, then you don't have to go in your database and check whether any user is trapped or not.
Now let's see the step by step code and description used in hacking anyone's facebook account id and password.
1. Make Login Page looks like Facebook Login Page
Before starting this step, first check what your targetted user like most, for example if your friend like to earn money in very short time then create a login page with message, or if your friend like to be healthy or he/she likes to fight or making body healthy, then put the message with some body fitness training tips etc.
Now let's do the first step by creating a demo login page with following code.
This login code is for mobile users, you can implement redirection code to redirect users to mobile, or desktop version login page using the JavaScript code, you will get the code after this login code.
Save the above code inside the directoryC:xampphtdocs with name earnmoney.php and put the image that shows some dollar's inside the same directory with same name but with extension .jpg that is earnmoney.jpg
Now open XAMPP and start the Apache and MySQL module. If you are not getting some idea about what i am telling then follow our PHP and MySQLi tutorial to feel better and start to the next step of hacking facebook account id and password.
Now if you will open your browser and type localhost/earnmoney.php, then here is the sample screenshot you will see:
As the above code is only used or made for mobile users.
But you have to create the same login page for both users, that is, for mobile facebook users and desktop facebook users.
Create another login page with name earnmoneyD.php for desktop to redirect desktop users to this page.
Here is the redirection code to use to redirect your targetted users to desktop page if users are from desktop:
Put the above code at top of the login page that you have created using the above code.
2. Create Script to Store Facebook Login Credentials
Here is the login handler script to store facebook login credentials of the targetted users in the database:
Put the above file inside same directory with name login.php.
3. Redirect Users to Orignal Facebook URL
As you can see from the above step two, the following code:
is used to redirect users to original facebook.
4. Make Database to Store Facebook Id and Password
Now create a database with same name and then create a table with same name and at last create columns with same details as used in the above code, that is, database named fbhackedusers, table named fbusers and then columns namely facebookid and facebookpassword.
5. Send Facebook Hacking Link to Friend
Now send the link to your friends to start getting their facebook account id and password.
6. Create Web page to List Hacked Facebook Users
To see your trapped users or hacked facebook account id and password you have to go to your database again and again, therefore to make it simple to see the hacked facebook account id and password, just make another webpage that lists the facebook account id and password in the form of table as shown in the following code:
Put the above file inside the same directory with name hackedusers.php.
Example of Hacking Facebook Account/Password
Now let's see the screenshot step by step of hacking facebook account id and password of your friend.
Here is the screenshot of demo login page when your friend click on the link you sent to him/her.
Now your friend will enter his/her facebook account id and password just to get some exclusive tips to earn money in short time. You can also change the message, title and description of the page as per your requirement, that is, what your friend like most.
Here is the demo screenshot after entering the facebook login credentials:
Now after entering the facebook login credentials and pressing on the Log In button, your login handler script will store the details inside the database and redirect the users to the facebook original URL.
Now your friend's facebook account id and password stored inside your database, you can see the list of hacked facebook users, you will see using your web page that is created using the last step, that is 6th step. Open the browser and type localhost/hackedusers.php
Now, you can send the link to any of your friends whose facebook account is going to be hacked by you or whose facebook account, you want to hack. And to check whether your friend is trapped in your hacking system or not, continue checking the list of hacked users.
Last Step to Implement Facebook Account Hacking System Live
Now the last and most required step to implement to make your facebook account hacking system live using your website, here are the steps, if you have already a website, for example, named codescracker:
Make a directory say facebook inside the parent directory
Create a database and then table inside the same database with the same details as used in above code of facebook account hacking
Put all the files, that is, earnmoney.php, earnmoneyD.php, login.php, hackedusers.php, and the image files, here earnmoney.jpg inside the directory named facebook
Now send the link to your friends, that is, codescracker.com/facebook/earnmoney.php
And open the link in your browser, that is, codescracker.com/facebook/hackedusers.php
and here are the steps, if you have not any website
Purchage or register any domain say for-my-facebook-hacking-system.com
Purchage any web hosting account to host or put all your website files
Setup your website to make it live
And then follow all the steps after having website and replace codescracker with for-my-facebook-hacking-system
After doing all the above things, you have to change the connection string, that is, you have to replace localhost with your hosting address, root with your database username, password with your database password. and then replace localhost/ to http://www.codescracker.com/facebook/
You can also make some changes accordingly to hack anyone's facebook account id and password as this tutorial is just a demo to show you how you will be able to hack anyone's facebook account using some simple methods.
Be Aware when using Internet
Here i have provided the complete tutorial, that is, from beginning to end of hacking facebook account by using phishing attack just to make you aware that how the random link looks like that can cause you in trouble after opening and filling some details inside unknown website, sometime, just on clicking on some random link, you will be hacked or your account will be hacked as there are many types of hackers available over internet that can make you in trouble when you have gone in wrong path or wrong way, therefore be aware when using Internet.
Hacking a Facebook account is one of the multitudinous queries on the search engines in 2017. Do you want to learn how to hack a Facebook account of your kids, employees or significant others? Today it is absolutely possible! There are several methods how to hack into someone’s Facebook. Read this article, and you will learn everything you need to know about hacking Facebook and using spy applications, let’s move on.
[Hey, Make Sure To Read: How to Spy on Facebook using Mobile Spy Apps]
1How to Hack a Facebook Account?
4What Do You Need to Know about Facebook Hacking Apps?
6Best Facebook Spy Apps
How to Hack a Facebook Account?
There are several methods how to hack someone’s Facebook messages, find short descriptions below. If you know these methods, hacking into someone’s Facebook becomes much easier.
Track Facebook Activities Discreetly
This is the oldest way how you can hack into someone’s Facebook messages. You hack someone’s Facebook activities by checking the devices when the target person is absent. You should understand that this way is risky and not effective in a long-term perspective.
How to Hack Someone’s Fb Messages, With the Help of Emails or Phone Numbers?
By knowing the target person’s account phone number or login, you may access his or her Facebook personal account to view all conversations! It doesn’t require specific knowledge and skills. If the target person prefers using a Facebook account with Messenger, it is possible to read entire information. Follow the next procedure, and you’ll get access to the target Facebook account.
Click the “Forgot password” button
Type the email of the target person or his/her phone number, this information allows stealing the password of the account which can be used only once.
You can redirect a one-time code to your phone or email and hack someone’s Facebook account.
How Can You Hack Someone’s Facebook Using Online Services?
There are special online services which allow you to hack a password of the target Facebook account. For example, Hyper Cracker. This service claims that it can hack any Facebook account for free and in several seconds, you need to:
Open the website and click the “Hack now” button.
Enter the Facebook ID in the bar on the website of the service.
Press the button “Hack this Facebook account”.
In several moments the service will generate the correct Facebook password, using which you can hack someone’s Facebook. And that’s it. Such services have their own disadvantages: they are unreliable because dozens of them appear every day and there are not enough testimonials and reviews of them like trustworthy reviews of spy applications.
How to Read Someone’s Facebook Messages Using “Reset the Password” Option?
There is another way to hack someone’s Facebook account by resetting the password. This way is easy if you know the target person close and will be able to answer a personal question.
Type the e-mail which was used by the user of the Facebook account which you want to hack during his/her registration.
Click the”Forgot password” button.
When the system gives you an opportunity to reset the password, press the “No longer have access to this email” button.
Type a new e-mail that was never used for the Facebook account. Answer the safety question and get access to all activities of the Facebook account of the target person.
How to Crack someone’s Facebook with Keylogger?
Sometimes it’s more effective to download a Keylogger file instead of guessing how to hack a Facebook account for free. With this keylogger app, you will be able to check all information that is typed on the target device. This special kind of software captures every keystroke. You will see all passwords, messages, logins immediately – it will give you an opportunity to hack into someone’s Facebook without any problems.
How to Hack a Facebook – Wi-Fi Method?
How to hack someone’s Fb messages using Wi-Fi or cookies? Cookies are used for storing information on a hard drive of the device and they can be retrieved later. The cookie files contain the important information because they track the web session. You can steal someone’s cookies if the target person uses the Wi-Fi network which you can control.
This way doesn’t give the password or the username. But you can copy cookies and trick the Facebook that you used your browser to log into the target account before. As an example, you can use, Firesheep – the Firefox add-on option. It collects and stores the web traffic.
Hacking Facebook Using Spy Applications
The best way to hack someone’s Facebook is to get access to his Facebook account using spy applications. This way is the most effective and reliable. Most of Facebook hacking applications require grabbing of the target mobile phone for several minutes to install spying device. After this, you’ll be able to watch every step and message of user’s Facebook account remotely. This trick works with various social network accounts. Facebook messenger chat is the most frequently used program.
Here are several types of Facebook spy apps which you may use to hack Facebook Messenger Conversations. Considering the target person you are going to track, here are three groups of Facebook hacking apps:
Parental control spyware (it works well with adults’ monitoring).
Tools that provide Facebook hacking of your co-workers.
Spy apps to spy on your partner’s Facebook profile.
How to Choose the Right Facebook Messenger Hack App: Tips
All hacking apps have peculiarities in their functions, but their primary point is the same: anyone can hack someone’s Facebook messages and edit account information by discovering a phone number of a target person. You don’t have to use anything else like a password or personal details.
Any user can hack Facebook without additional payments. The difference between free and paid versions of Facebook hacking software is in the number of features because some of them provide additional options for users. What is common is that everyone can secretly hack any Facebook account owner. Perhaps, this article will help you to choose the Facebook hacking app which would suit your needs. What should you take into account while choosing a Facebook spy app?
How To Hijack Facebook Accounts 2019
The purpose of the monitoring;
The number of the devices you want to track;
The price of the application;
Customers’ testimonials;
Check the compatibility of the Facebook spy app (many modern apps are compatible with all popular operating systems, but check it to make sure);
The features which the application can provide to its user.
Visit the official website of the service. It has to look reliable and professional. Sometimes you can find a demo version of the app on the website in the form of a video which is great if you haven’t used surveillance apps before. A demo video can show you the way of using, features, etc.
What Do You Need to Know about Facebook Hacking Apps?
It is the method of hacking someone’s Facebook account which is completely risk-free because it guarantees your anonymity. If you don’t want to hack Facebook and get at risk, you can use numerous Fb spy apps which are available in the software market today. Use them to spy on Facebook messages, posts, photos and other media files that were sent, received or shared by the owner of the target Facebook. All information will be in a full view. The main advantage of Facebook spy apps is that you can track the activities in the stealth mode and the owner of the target device won’t notice you.
Advantages of Facebook Spy Apps
Now you already know how to hack Facebook accounts and learned the most effective and reliable ways to do it. Find the advantages of Facebook spy apps on the list.
Your complete anonymity. The app hides in the operating system and the owner of the target device will not notice it until he/she knows exactly what to look for.
Spy apps are affordable. The prices for spy apps are flexible and not high, so you can choose the best price for you. There are also free apps for which you won’t have to pay even one cent.
Additional features. Facebook hacking apps provide many additional features besides spying on Facebook accounts: tracking phone calls, web browser history, SMS messages, media files, etc.
Facebook spy apps are easy to use. You don’t need to be a hacker to install the average spy app or to use it; you’ll find the instructions in this article.
How Does Facebook Spy App Work?
Facebook spy apps are easy to use. The installation process is simple and fast and even if you have never installed any program before, be sure you will not have any problems with it. The installation process of every spy app is described by the developers on the official website of the Facebook spy software, but there are steps which are common for many Facebook hacking apps. Look at them.
Chose the Facebook hacking app which suits you the best, using tips that we gave you in the article;
Visit the official website of the Facebook spy app and find the web page “Download” or “Install the app”;
Download the installation file to the target device;
Run the installation file of the Facebook hacking application to install it;
Sign up your personal account on the website of the Facebook hacking app;
Log in and start hacking all Facebook activities on the target account.
How Best Way To Hack Facebook Account
The Facebook spy app will do the rest of the work by itself. You can read Facebook and other hacking information from any place in the world and from any device with the Internet connection. It will gather all data and upload it to your personal panel.
Additional Features of Facebook Messenger Spy App
What other features will you get if you use Facebook messenger spy app for hacking someone’s Facebook account? Some applications provide endless lists of features.
Phone calls: you can track all calls (incoming and outgoing, including time and date logs, names, numbers, duration of the calls);
Media files: check photos, sounds, music files, video files, and other files that are stored in the phone’s memory;
Hack web browser history: see the list of visited websites, favorite websites;
GPS location: you can track the current GPS location of the user. Some apps have the option of “location history” when you can see the list of all locations which were visited by the owner of the phone. Check also Geofencing feature here.
Hack messages: you’ll monitor SMS messages, all chats and conversations on instant messengers and social media accounts, etc.
Best Facebook Spy Apps
There are several spy applications that can easily answer your question “how to hack someone’s Facebook account”. We give you some information about them.
1) mSpy
If you ask a question “How can I hack a Facebook account”, the mSpy is your answer. It is a comprehensive and reliable Facebook spy application which is popular among the users and trustworthy thanks to plenty of hacking features and high-quality customer support. The mSpy has a perfect reputation and good customer feedback. The program provides 24/7 customer support (email, chat, phone) which is extremely useful if you use spy app for the first time.
2) XNSpy
This great spy app was designed for employers who want to monitor employees when they use company’s phones and for parents who want to hack their kids’ accounts. This spyware provides cool features besides hacking Facebook account like the remote control option. You can send commands remotely or change cell phone settings without touching the target phone.
3) iKeyMonitor
is one of the best and well-known keyloggers which can track all the activities of the target device and make the screenshots at the same time. You’ll see everything that is happening on the device. There is a free trial version of this software which can hack a Facebook account, and now you can get a good discount: 25% Off.
How Can Parents Benefit with Facebook Tracking Software?
We think that every user may find some bonus on the Facebook account spying. The truth is that teenagers adore Facebook and have thousands of friends online. So, if you are a parent who cares about his son or daughter, you will use such software and be aware of all his or her conversations and shared files. Don’t forget that emails, Instagram accounts, WhatsApp, and regular SMS may also include important data. You should use other spying apps such as TheTruthSpy or another spy program. Entirely complete awareness of kids’ activity may help to prevent unpleasant life situations.
So, now you see that ethical question is not essential if you try to protect your kids. The popularity of Facebook has grown since 2008. Statistics of Facebook users prove this fact, and it means that the interest in hacking its accounts has increased. A question is whether a third-party/user can view someone’s conversations. It is enough to have a mobile number of the victim to hack his or her Facebook account.
Conclusion
You have learned how to hack someone’s Fb. Now you understand that it’s possible and not hard. We tried to give you comprehensive and complex information about hacking Facebook activities and using spy apps. But if you have any questions or suggestions, you can write them in the comments to this article.