WcamPhish is a method for capturing images of a target’s webcam or front camera on a phone. In order to create a link that we can send to the target over the internet, WcamPhish hosts a fake website on a PHP server that was custom-built.
If the target agrees, the website requests their camera permission, and this tool then takes pictures of the target’s device with that camera.
Two automatic web page templates are included in this tool to help you engage your target audience and learn more about them.
simply enter the festival name or YouTube’s video ID
This tool requires PHP for the webserver, SSH, or serveo link. First, run the following command on your terminal
apt-get -y install php openssh git wget
Installing (Kali Linux/Termux):
git clone https://github.com/Tanmay-Tiwaricyber/WcamPhish
cd WcamPhish
bash wcamphish.sh
Change Log:
Version: 1.5: Add new online meeting template
Version: 1.4: Ngrok auth token update
Version: 1.3: Fix ngrok direct link
WcamPhish was developed to help in penetration testing; it is not liable for any abuse or illicit uses.
Please consider following and supporting us to stay updated with the latest info
Journalists use OSINT to verify public information before publishing. In 2026, misinformation, AI-generated images, fake…
Docker is an open-source platform that lets you package and run applications inside containers. Each container…
PostgreSQL (often called Postgres) is an open-source relational database system. It supports advanced features like JSON…
Xrdp is an open-source server that lets you connect to your Ubuntu machine from another computer…
Apache Tomcat is an open-source web server and Java servlet container. It is one of the…
Keeping your Ubuntu system updated is one of the best ways to protect it. Security…