Hello friends ! Previously I've posted different ways to hack the user account of Email Server or Social Networking site. Today I'll illustrate the SESSION HIJACKING technique to hack FB Account.
In this scope I will be using BACKTRACK, a Penetration Testing Distribution integrated with the below tools for Network Scan, MIMA and Packet Analysis.
1. NMAP
2. ARPSPOOF
3. WIRESHARK
And two below scripts which are compatible with Mozilla Firefox will be used for Cookie Injection:
1. GREASEMONKEY
2. COOKIE INJECTOR
Techniques:
1. First Scan your network and find the target usingNMAP, a Network Scanner. In this case i got 192.168.1.3 as the Target.
2. Next I need to start the IP Forwarding which enables my machine to forward any network traffic it receives from the target to the router.
3. Next Man-In-The-Middle-Attack (MIMA) is begun by exploiting ARP Cache Poisoning to intercept network traffic between the target and the router.
First a malicious ARP reply is sent to the target, associating my MAC address with the router's IP (192.168.1.1).
In this scope I will be using BACKTRACK, a Penetration Testing Distribution integrated with the below tools for Network Scan, MIMA and Packet Analysis.
1. NMAP
2. ARPSPOOF
3. WIRESHARK
And two below scripts which are compatible with Mozilla Firefox will be used for Cookie Injection:
1. GREASEMONKEY
2. COOKIE INJECTOR
Techniques:
1. First Scan your network and find the target usingNMAP, a Network Scanner. In this case i got 192.168.1.3 as the Target.
2. Next I need to start the IP Forwarding which enables my machine to forward any network traffic it receives from the target to the router.
3. Next Man-In-The-Middle-Attack (MIMA) is begun by exploiting ARP Cache Poisoning to intercept network traffic between the target and the router.
First a malicious ARP reply is sent to the target, associating my MAC address with the router's IP (192.168.1.1).
Secondly another malicious ARP reply is sent to the router, associating my MAC address with the target's IP (192.168.1.3).
4. Next I start packet capturing using WIRESHARK at mywlan0 interface and
applied a filter with http.cookie contains datr. The cookie string printable text with GET label is then copied
5. GREASEMONKEY and COOKIE INJECTOR scripts are then installed in my Firefox browser. After restarting the browser Facebook login page is opened and Alt+C is pressed to inject cookie strings captured in Wireshark
Then reload the Web page .. done! !!!