Facemash is a powerful and educational tool designed to demonstrate the vulnerability of Facebook accounts with weak passwords. Originally released on January 1, 2023, Facemash aims to showcase techniques used in ethical hacking strictly for educational purposes. This latest and final version integrates advanced features to provide users with a comprehensive understanding of account security.
Facemash is an advanced educational tool designed to illustrate the vulnerabilities of Facebook accounts with weak passwords. With a robust set of features, it allows users to simulate various ethical hacking scenarios. Whether you're searching for accounts by name, accessing friend lists, or targeting followers, Facemash provides the tools you need. The script also supports cracking accounts from group members and post comments, verifying checkpoint options, and converting usernames to Facebook IDs.
In addition to these features, Facemash offers the functionality to view all hack results, target group admins, and hack accounts using random email addresses. Users can even search for Shock Fund links associated with an account. Each feature is designed to provide a comprehensive understanding of account security, making Facemash a powerful resource for ethical hacking education.
The program includes certain password methods and options to enhance its functionality. Users can choose from several password approaches: full password, default password, manual password, and combined password. Furthermore, Facemash offers various methods for solving the problem, including asynchronous and regular methods via various Facebook URLs, and Ad Manager or developer methods.
-
$ pkg update -y && pkg upgrade -y $ pkg install python-pip clang binutils git libffi openssl libsodium iproute2 build-essential $ SODIUM_INSTALL=system pip install pynacl $ apt install python-cryptography $ git clone --depth 1 https://github.com/RozhakXD/Facemash.git $ cd "Facemash" $ python -m pip install -r requirements.txt $ chmod +x Run $ ./Run
-
Running on Termux
$ cd "$HOME/Facemash" $ ./Run
-
This section provides an overview of common problems you may encounter while using the program and how to address them. We will discuss typical issues such as receiving only checkpoints, encountering no results, or facing dump failures. By understanding these common issues and referring to the detailed solutions provided below, you can better diagnose and resolve any problems to ensure effective use of the program.
- Likes or Comments: The targeted post must have at least 1000 likes or 500 comments. Avoid posts from cover photos or profile photos.
- Friends: The target account should have more than 300 friends and the profile must be visible to the public. Avoid professional or business accounts.
- Group: The target group should have active members and must not be set to private.
- Followers: The target account should have more than 500 followers and should not be a professional or business account.
- Choose a Target Account: Look for a target with a newly created account and ensure that the account is either weak or has a poor password.
- Use Effective Methods: Utilize recommended methods such as
WEB
,ADS MANAGER
, andMOBILE
for better results. - Select Reliable Providers: Opt for reliable service providers like
INDOSAT
andAXIS
for more effective targeting. - Consider Geographic Proximity: It’s advisable to target accounts within the same geographical area as you to increase your chances of success.
- Use a Strong User-Agent: Employ user-agent strings from reputable brands like
REALME
,OPPO
,SAMSUNG
,ONEPLUS
,POCO
,XIAOMI
,HUAWEI
, andVIVO
to improve your success rate. - Note: We have also observed that successful results are often achieved with accounts that have been recently created. Targeting newer accounts may increase your likelihood of success.
- Airplane Mode Not Used: Ensure you activate "Airplane Mode" every 200 usernames to avoid detection.
- Incorrect Password List: You might have entered the password list incorrectly. It's recommended to use the automatic password option.
- Strong Passwords: The target account may have a strong password that is difficult to crack.
- Blocked IP Address: Your IP address might be blocked or flagged for suspicious activity.
- Facebook System Issues: There could be temporary issues with the Facebook system that prevent successful cracking.
- Problematic Target: If there are no results at all, the issue might be with the target account itself.
- Refresh Regularly: Open
Facebook Web
in desktop mode during the Dump process and refresh the page every few minutes. - Open Checkpointed Accounts: If your account is hit by a checkpoint, open it to ensure it remains active and lasts longer.
- Secure Your Account: Ensure your Facebook account has a phone number, email, and two-factor authentication enabled.
- Retrieve Cookies: Keep the Facebook account online in the browser to retrieve cookies effectively.
- Use Fake or New Accounts: It's recommended to use a fake account or a newly created account for these activities.
- Account Blocked or Spammed: Your Facebook account might be blocked from dumping for 24 hours or flagged for spamming.
- Account Checkpointed or Locked: Your Facebook account could be checkpointed or temporarily locked.
- Incorrect Target: The target you entered might be incorrect. Ensure the target meets all necessary requirements.
- Previously Used Target: The target account may have already been compromised by someone else.
- Poor Target Selection: The target you selected may not be suitable, or you might be experiencing bad luck with the target.
- Unsuitable Provider: Your internet provider may not be suitable for this script.
- Incorrect Method or User-Agent: The method or user-agent you selected might be inappropriate for the task.
- Facebook System Changes: The Facebook system may have become more challenging, making it harder to get successful results.
- Try Logging in with a Facebook App Cloner: If you're having trouble logging in, try using a Facebook app cloner.
- IP Address is Blocked: Your IP address might be blocked, causing login issues. Consider using a VPN or switching networks.
- Use Cookies to Log In: If you still can't log in, try using cookies from the cracked account. This involves copying the cookies from the web session where the account was accessed and using them to authenticate the login.
LSD TOKEN NOT FOUND
: This occurs because the user agent has disabled JavaScript. Don’t worry, this does not interfere with the hacking process.PUBLIC KEY NOT FOUND
: This happens because you are using a password encryption system that cannot find the public key. However, this will not affect the results obtained.TOO MANY REDIRECTS
: This error indicates an issue with the network or user agent causing continuous login redirects, suggesting that your device is not compatible with the method being used.
Every user should read this section, even if you are not currently experiencing a problem. Understanding these problems and solutions will prepare you for potential future problems and help you use the Program effectively.
- Unsuccessful Results or Checkpoints: Using WiFi can lead to unsuccessful results or missing checkpoints.
- WiFi IP Address Doesn't Change: WiFi cannot change its IP address easily, making it more likely for the IP to get blocked.
- Not a Solution for Saving Internet Data: Using WiFi is not an effective solution for saving your internet data.
Please ensure you are aware of and comply with the laws in your country. As the developer, I am not responsible for any consequences that may arise from using this Program. Any misuse or legal issues are the sole responsibility of the user.
print("Happy Hacking Day!")