Breaking session ID?

You know how you can forge sessions and what-not?

I think I have a sid encoded by server and my question is how do you get them back into their old session['somethinghere'] form?

curious question but hell, isn't part of the pen test challenge session ID tampering?

Maybe some links or information {bump}

like mosh said…in the pen testing challenge your not trying to change session…if im correct(been awhile) your trying to end the session and add to the inurl commands. -peace

Well yeah I do want to know how to do the pen one but still. How do you go about breaking session ID?

I mean understanding what the server has given you in your sid.

Thanks for the continuing help ^.^