LAN session hijacking, log into anyones accounts.
I changed my mind Ill go ahead and explain the session piggy backing, everyone needs to learn to use tools. Just dont use them without having a clue how they work and take credit for others hard work. :whoa:
You can steal the session of any other user on your Local Area Network. This includes schools, work, home, someone else's home, someone else's work, someone else's school.
I dont know how many know about this but this is a hacking forum so I will share the info.
It is possible to hijack an account of any user on any website that uses sessions. If Bob is on the same LAN as me and he logs into his Gmail from his office, and I am sifting out the proper information from the network traffic, I am also logged into his Gmail. This is done by sniffing out the proper cookies, session data and URL's from the network traffic on the LAN.
There is a tool called hamster (cookie injector) and an excellent sniffer called ferret, ferret is referred to as a network sniffer on steroids. Using these 2 tools together (hamster and ferret) you can do amazing things. These tools were written by Robert Graham (CEO Errata Security) and he showed the power of his tools at the Black Hat 2007, around August 2nd, 2007. The tool ferret sniffs out all cookie and session data from the network and the tool hamster prepares them (in a great easy to use web interface) for cloning. With these tools you can connect to any wifi hotspot and use anyones account that they log into or have live sessions for while on the hotspot.
Extremely dangerous but also extremely fun :D.
I have tried this out (of course on my own network..) and I must say it is quite amazing. I have had problems with yahoo though, you must click the IP you want then click yahoo.com and after you see the account you are logged into you need to delete all the cookies from your browser (i use cookie editor (firefox addon)) and then click the mail and go into the account.
Google has protections against this by making you re-enter any password information before editing any account information..
I believe BT3 also has something similar (wifizoo) I thnik? But I am still using BT2 because I love it so much so I think I will stick with ferret and hamster for now :happy:
These tools can be downloaded here, http://www.erratasec.com/sidejacking.zip
Anyway this is a great set of tools and just thought I would share them with everyone who didnt know about them previously.
Hey umm. I almost feel this could be… Too, lets say, harmful to be public. Imagine the little school boy who wants his A in Bio or something and well, uses these tools to capture the session cookies of his teachers grading session and then changes his grades. Highly likely to happen. Lets at least convert this thread into articles because many people seem to not read them. I remember I use to not, I was dumb. They are filllllled with information.
chronicburst wrote: Hey umm. I almost feel this could be… Too, lets say, harmful to be public. Imagine the little school boy who wants his A in Bio or something and well, uses these tools to capture the session cookies of his teachers grading session and then changes his grades.
Yeah, and the little bastard will get found out because young people don't have one thing that helps us: experience.
Lets at least convert this thread into articles because many people seem to not read them. I remember I use to not, I was dumb. They are filllllled with information.
Umm… you were reading the articles here? 95% of them are crap.
chronicburst wrote: uses these tools to capture the session cookies of his teachers grading session and then changes his grades.
True. You could use it on any web site with sessions ;)
Thanks for comments, well maybe I will make an article out of this. Needs to be written a little differently though.
I can delete this if admins don't like it. Probably should be an article anyway huh?
Zephyr_Pure wrote: Umm… you were reading the articles here? 95% of them are crap. Your right a lot are quite disgusting. But I refer people to the articles about challenges all the time some are actually pretty helpful. Oh and the Advanced C++ pointers article was decent to.
EDIT: Just checked out your article on securing windows xp pro. One of the best articles on the site actually.