11 May 2017

What is idn homograph attack and create An Undetected Or Advance phishing link for facebook? 2017

Hello guys welcome back here in this advance hacking blog where i always publish articles related to advance type of hacking which is used by many popular hackers.And don't think learning advance hacking is illegal because if you don't know actually what is hacking and how it will affect your life you can't know the ABC of advance hacking.

Now my today's article is for those guys who want to make an phishing link which is totally undetected by any type of antivirus or other security scanner tools or website.But before going to create this type of phishing link you need to know something basics of this hack.I think you already familiar with what is phishing attack and how it will work,here i am not going to tell you about phishing,you can read full article on it by going to this link.

Suppose that if you are going to hack someone facebook account through phishing method ,you simply download phishing page and upload it on a free webhosting site and very easily you'll get your phishing link for facebook but one think you need to know that your phishing link looking like absolutely fake or because it'll look like faceboook.netme.ne.com etc or something like different .So if your victim is quite smart then you can't make him fool.

Now think if you are able to create an phishing link same as https://www.facebook.com then i can say 100% no one can determine it is a phishing link and very easily he/she will click on your link without having any suspicious thinking and the rest work you know how phishing link work and how you will get password.

So this all the things become possible by IDN attack or homograph attack ,now you need to know the basic of this attack.

What is IDN Homograph Technique?

Here idn stands for international domain name .Did you know guys you can register your domain not only in English but also in other languages available in the world?For example you can register your domain in Latin O,Greek O,Cyrilli O ,Chinees Laguage etc.And many of the character in these language exactly match with each other and no one can determine this is the English alphabet or  Latin o alphabet.So hackers simply use this technique and register the domain having the same character of different language.

Suppose If we are talking about English language ,You can't determine these two character I and l .The first latter is capital i and second latter is small L . So you can think that it become impossible to know that what is the reality.Below I'm giving you some more example for clear understanding.

original         fake

www.apple.com  and   www.apple.com
www.microsoft.com   and   www.rnicrosoft.com
www.google.com  and  www.google.com
www.facebook.com  and  www.facebook.com

Now simply determine the difference between original and fake one.If you don't notice then don't worry i m telling you ,in first example i use capital i instead of L ,in second example ise r and n instead of m , in third example i use capital i instead of L and in fourth example i use other language alphabet which look like same as the E latter of English.

Now the time come to know how you can create this type of phishing link and how to register this type of domain in Unicode character.See the screenshot below which looking like original apple.com website.

Step By Step To Create An Advance Phishing Link Using Homograph Technique

Step:1) Very first decide you are going create an phishing link for which website,you can create it for any one line gmail,twitter,instagram etc But i am suppose that you are going to create phishing link for facebook.Okay simply open this site in your web browser https://www.irongeek.com/homoglyph-attack-generator.php

Step:2) After that simply enter the domain name of that website whose phishing link you want to create for example www.facebook.com
Step:3) Now you can see in the screen there are many similar character, you can choose any one or two similar character which are looking same as English alphabets.

Step:4) Now scroll down the screen and click on submit button.

Step:5) Here a new screen will come and you'll get the Unicode character of www.facebook.com which is located after the encoded lable to set up in dns 

Step:6) Okay if you are register the domain with this same uncode character domain name you'll get the same name which look like same as www.facebook.com but reality you know (This same looking character are of another language character).

Step:7) Now for making this phishing more powerful simply give it ssl certificate then now your phishing link will look like https://www.facebook.com (in https -s stands for secure).So no one can think this is a phishing link.

So friend this is the most powerfull method by which hackers create his phishing link and giving it a ssl certificate ,Did you know in this all process hackers need to pay approx 15$.

How to secure yourself from this IDN homograph attack?

Actually this type of attack is totally undetected,and there are no way to secure yourself from this hack but if you use your some mind you can determine it by going to ssl certificate icon in web browser when you open the suspected phishing link and check the ssl certificate clearly and you'll see the different name of this phishing domain but it is something technical so no one can check it that's why many of us hacked by hackers daily.

Many Browser company Like Mozilla Firefox,internet explorer,opera mini etc working on it and trying to solve this problem.And this type of attack is easily detected by the latest version of these two web browser (safari and chrome). Google and apple fixed this problem and prevent users from opening such type of site but not 100%, they can only show the Unicode character but the phishing link will open like before.

Then friends this is the end of this post ,if you like this article please share it with your friends.If you have any doubt you can ask me via going to contact us section of this site.Thanks dear for reading this post and giving your valuable time.



  1. […] What is idn homograph attack and create An Undetected Or Advance phishing link for facebook? 20… […]

  2. […] Hacking Articles: 1. What is IDN homograph attack-More advance phishing attack 2. How to use 1 whatsapp account on two different mobile phones 3. 7 Best android game hacking […]


Please make a comment