Working with the multi-attack web method
The multi-attack web method takes web attacks to the next level by combining several attacks into one. This attack method allows us to unite several exploits and vulnerabilities under a single format. Once the file or URL is opened by the target user, then each attack is thrown one by one, unless a successful attack is reported. SET automates the process of clubbing different attacks under a single web attack scenario. Let's move ahead and see how this is done:
![](https://static.packt-cdn.com/products/9781788623179/graphics/f9bcf19b-fb3b-4612-af7c-2f5b669803f0.png)
We can select different attacks, and once we are done, we can pass 7
and finally combine the selected attacks under a single vector. Finally, we will be prompted to select a payload and backdoor encoder.
How to do it...
Once different attacks have been selected, SET combines them with a payload and builds a single malicious link that now needs to be socially engineered. We will have to build a template that looks completely legitimate to the target user and force him or her to visit the malicious...