Hey there,,,!!! Many of them have been requesting me to post about FACE BOOK HACKING,,,!!! Well here it is for you,,,!!!
Authentication Cookies used by Face book :
The cookie which face book uses to authenticate it's users is called "Datr", If an attacker can get hold of your authentication cookies, All he needs to do is to inject those cookies in his browser and he will gain access to your account. This is how a face book authentication cookie looks like:
datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;
An attacker may use variety of methods in order to steal your face book authentication cookies depending upon the network he is on, If an attacker is on a hub based network he would just sniff traffic with any ***Packet Sniffer*** and gain access to victims account.
If an attacker is on a Switch based network he would use an ***ARP Poisoning*** request to capture authentication cookies, If an attacker is on a wireless network he uses a tool called ***FIRE SHEEP*** in order to capture authentication cookie and gain access to victims account.
Here in the example below I will be explaining in simple STEPS how an attacker can capture your authentication cookies and hack into your Face book account with ***Wire Shark***
LETS Start:-
Step 1= = >> First of all download wire shark from here Click Here to Download and install it.
Step 2= =>> Next open up wire shark click on analyze and then click on interfaces.
Step 3= =>> Next choose the appropriate interface and click on start.
Step 4= =>> Continue sniffing for around 10 minutes.
Step 5= =>> After 10minutes stop the packet sniffing by going to the capture menu and
clicking on Stop.
Step 6= =>> Next set the filter to http.cookie contains “datr” at top left, This filter will search for all he http cookies with the name datr, And datr as we know is the name of the face book authentication cookie.
Step 7= =>> Next right click on it and go to Copy - Bytes - Printable Text only.
Step 8= =>> Next you’ll want to open up FireFox. You’ll need both Greasemonkey and
the cookieinjector script. Now open up Face book.com and make sure that
you are not logged in.
Step 9= =>> Press Alt C to bring up the cookie injector, Simply paste in the cookie value
into it.
Step 10= =>> Now refresh your page and
*******BINGO***********************You are logged in to the victims
face book account.***************
Now comes the important part,,,,,!!!
Hope you ENJOYED this post,,,!
Note= =>> This Post is educational purpose only.
I am not responsible for any damage.
If u can't understand something in this post, then comment your problem. I will help you.
Step 5= =>> After 10minutes stop the packet sniffing by going to the capture menu and
clicking on Stop.
Step 7= =>> Next right click on it and go to Copy - Bytes - Printable Text only.
Step 9= =>> Press Alt C to bring up the cookie injector, Simply paste in the cookie value
into it.
face book account.***************
Now comes the important part,,,,,!!!
Hope you ENJOYED this post,,,!
Sign up here with your email
ConversionConversion EmoticonEmoticon