This is the demo page. After 10 seconds of lost focus to this page, the attack will occur.

Please be advised that if you attempt to provide credentials during the attack you will simply be redirected to Facebook.com. The reason behind this is that the code attempts to store the user's credentials in a database record, however, this portion of the code has not been configured to work with a live database. It was coded to work with my local system within my testing environment and the error handling provided in the fb_login.php file simply redirects to Facebook.com should any errors occur during database connection, selecting a database and table, and record insertion.

If you want to try this out for yourself within your own testing environment you'll need a LAMP/WAMP setup and the source files I provided on the previous page.