Social engineering tool [Access Webcam & Microphone & Location Finder] With Python using Storm-Breaker

Phishing is a type of cyber attack where attackers attempt to trick individuals into giving up their personal information, such as login credentials or credit card numbers, by posing as a trustworthy entity, such as a bank or a social media platform. This is usually done through an email, text message, or social media post that includes a link to a fake website or a request for personal information. Phishing attacks can be highly sophisticated and difficult to detect, and they can often result in serious consequences, such as financial loss, identity theft, or unauthorized access to sensitive data. It’s important to be aware of the signs of a phishing attack and to take steps to protect yourself and your personal information.

Storm-Breaker is a popular command-line tool with python for social engineering tool that is designed to access webcam, microphone & location finder.

Setting up Storm-Breaker

To get started with Storm-Breaker, you need to install and configure it on your system. Here are the steps to do so:

• Install Python: Storm-Breaker is written in Python, so you need to have Python installed on your system before you can use it. You can download and install Python from the official Python website.
• Install Storm-Breaker: Open a command prompt or terminal and enter the following command:

git clone https://github.com/ultrasecurity/Storm-Breaker
cd Storm-Breaker
sudo bash install.sh
sudo python3 -m pip install -r requirements.txt

Usage:

sudo python3 st.py

• Follow the web panel link http://localhost:2525

Default username and password:

• username : admin
• password : admin
• You can edit the config.php file to change the username and password .

Dashboard page:

The dashboard page display is as shown below, and there are several links according to the attacker’s needs given to the target and the results will appear below.

Want to run it on personal host?

Zip the contents of the storm-web folder completely and upload it to the public_html path .

Note that the tool should not be opened in a path like this > yourdomain.com/st-web Instead , it should be opened purely in the public_html path (i.e. : don’t just zip the storm-web folder itself, but manually zip its contents (the index.php file and other belongings should be in the public_html path)

Credit:

Based on ultrasecurity github page.