The SMS spoofing attack allows the attacker to send a text SMS using SET without revealing his/her true identity or by using someone else's identity.
Let's go through the steps required to perform this attack:
Start the SET toolkit. You will see the following welcome screen:
SMS Spoofing Attack Vector is present under Social-Engineering Attacks, as shown in the preceding screenshot. This module in SET was created by the team at TB-security.com.
The SMS spoofing attack vector allows you to craft your own SMSes and send them to the target using some third-party number without ever interacting with the user.
From the Social-Engineering Attacks menu, select the SMS Spoofing Attack Vector option. Once selected, we will be presented with the following screen, where we need to decide on the decision regarding the body of the SMS:
Let us first see how we can create a custom template:
Set:sms> 2 [ **********] Custom Template Generator [*********] Set:sms...