Dear Readers: PWNSCAR is planning to publish a monthly Tech Magazine along with some other blogs. To Contribute CHECK DETAILS

ABOUT ME

13 May 2012

Email AC Hacking (Cookie Stealing) - Part 7

05:17  ,  No comments


Hey awl :) in diz tut i will be telling uhh awl abt another way n quite interesting way f hacking email ac :D that is Cookie Stealing ;)


Things Required


  • Ettercap or Cain and able for ARP poisoning the victim
  • Wireshark for sniffing packets and stealing cookies 
  • Firefox browser and Cookie logger add on for injecting the stolen cookies in our browser

What are Cookies and what can we do by Stealing Cookies


Cookies are small files that stored on users computer by websites when a user visits them. The stored Cookies are used by the web server to identify and authenticate  the user .For example when a user logins in Facebook a unique string is generated and one copy of it  is saved on the server and other is saved on the users browser as Cookies. Both are matched every time the user does any thing in his account

So if we steal the victims cookie and inject them  in our browser we will be able to imitate the victims identity to the web server and thus we will be able to login is his account . This is called as Side jacking .The best thing about this is that  we need not no the victims id or password all we need is the victims cookies


NOTE= For doing diz attack ur victim must be in LAN


Ok now follow me step by step




STEP 1 --> Firtly ARP Poison your victim . For this purpose you can use cain and cable or Etthercap (for that you  can see my post on ARP Poisoning)


STEP 2 --> After ARP Poisoning open your Wireshark  and click on capture button from the menu bar  and then select your interface and finally click on start capture


STEP 3 --> Now you will obeserve that the packets been captured :) now wait untill the victim logs in to his account (Gmail,Facebook)

STEP 4 --> As soon as the victim logs in at the mean time u can find his/her ip address by using CMD(for doing that open cmd and type .Ping Facebook.com to find your victims ip address

STEP 5 --> Now filter all IP packets having IP address of www.facebook.com and search for HTTP protocol followed by GET /home.php, this may vary depending on region and time/zone but don't bother try to search all packets with HTTP GET for cookies.




STEP 6 --> Now from packet details window expand the packet information for above packet and you'll get 8-10 different cookies that are stored by www.facebook.com on victim's PC. Right click and copy all cookies names and values in notepad. 
STEP 7 --> Now open Firefox and open add and edit cookies ,which we downloaded earlier , add all the cookie values .

Now close Cookie editor and open Facebook, you'll find yourself logged into the victims account.








0 comments:

Post a Comment

Got any doubts or feedbacks ?
Feel free to comment !

Subscribe to: Post Comments (Atom)