Here is an example of a phishing page, as seen by the victim, demonstrating PwnSTAR acting as a web server. It offers free WiFi in exchange for credentials. It only needs one...
As it stands it doesn't have too many legitimate uses. However, it would be a simple job to copy the target's business logo onto the page, or clone their site, and then fire up PwnSTAR near the premises.
I've only started learning html, so this is pretty rough. Feel free to contribute a more refined version. The more elegant, the more chance of success.
Instructions for use:
download and untar
copy the hotspot directory into /var/www
hotspot directory:- group www-data, create and delete files
formdata.txt:- group www-data, rw
process-form-data.php:- make executable
leave index.html where it is; PwnSTAR will move it into position
Download from http://code.google.com/p/pwn-star/downloads/list