Social Engineering Toolkit ¶

Social Engineering Toolkit (SET) (10.1k ⭐) is a CLI framework to perform social engineering attacks.

$ sudo setoolkit

The configuration files are generated after the first invocation. They are stored in /etc/setoolkit/set.config.

Website Cloning Example 🪤

• Social-Engineering Attacks > Website Attack Vectors > Credential Harvester Attack Method > Site Cloner
• By default, the cloned page is hosted on WEB_PORT=80
• Select the webpage to clone
• Select the IP where to host the file (ex: tun0 IP for CTFs)
• Wait for users to input their credentials