The post is for learning and helping purpose,this blog doesnt support hacking |
Learn counter measures form being hacked
The cookie which facebook uses to authenticate it's users is called "Datr", If an attacker can get hold of your authentication cookies, All he needs to do is to inject those cookies in his browser and he will gain access to your account. This is how a facebook authentication cookie looks like:
Cookie: datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc; Do not try to hack,The post is for learning and helping purpose,this blog doesnt support hacking |
You can use variety of methods in order to het your facebook authentication cookies depending upon the networkyou are on, If you are on a hub based network you can sniff traffic with any packet sniffer and gain access to your account.
If an you are on a Switch based network you can use an ARP Poisoning request to capture authentication cookies, If you are on a wireless network you just needs to use a simple tool called firesheep in order to capture authentication cookie and gain access to your account.
In the example below I will be explaining how an you can capture your authentication cookies and hack your facebook account with wireshark.
Step 1 - First of all download wireshark from the official website and install it.
Step 2 - Next open up wireshark click on analyze and then click on interfaces.
Step 3 - Next choose the appropriate interface and click on start.
Forgot your windows password:ophhack password-recovery-tool
Step 4 - Continue sniffing for around 10 minutes.
Step 5 - After 10minutes stop the packet sniffing by going to the capture menu and clicking on Stop.
Step 6 - Next set the filter to http.cookie contains “datr” at top left, This filter will search for all the http cookies with the name datr, And datr as we know is the name of the facebook authentication cookie.
Step 7 - Next right click on it and goto Copy - Bytes - Printable Text only.
Step 8 - Next you’ll want to open up firefox. You’ll need both Greasemonkey and thecookieinjector script. Now open up Facebook.com and make sure that you are not logged in.
Step 9- Press Alt C to bring up the cookie injector, Simply paste in the cookie value into it.
Step 10 - Now refresh your page and viola you are logged in to the victims facebook account.
Note: This Attack will only work if victim is on a http:// connection and even on https:// if end to end encryption is not enabled.
Countermeasures
The best way to protect yourself against a session hijacking attack is to use https:// connection each and every time you login to your Facebook, Gmail, Hotmail or any other email account. As your cookies would be encrypted so even if an attacker manages to capture your session cookies he won't be able to do any thing with your cookies.
Learn more ways to hack facebook account
No comments:
Post a Comment
Please vote for the post......and leave a reply...no need t sign in for voting and commenting