Thursday, November 4, 2010

FireSheep ... causing all the trouble

Sitting in a coffee shop browsing through your social network site ... next thing you know byebye session..your session has just been hijacked. Imagine the things you could do.... So I decide to grab this tool that has caused a havoc in recent times. Its called Firesheep. The most amazing part about this tool is the ease with which you can hijack a sesson id.
Some smart guy thought ... these sites just claim they provide security, lets teach them a lesson. And he did a wonderful job at it I must say. I got so interested in this and obviously I tried it! I am using windows 7 and here is what I did,
1) downloaded it from here, which I believe is a trusted source.
2) Its needs Winpcap to capture the cookies and other information. So you would have to install that first.
3) Also, you need Firefox version 3.6.12 and it will not work on earlier ones. trust me I tried.
4) Now you get the .xpi firefox plugin and install it on the firefox browser.
5) Now restart your browser ..
6) You're ready. Wow it is that simple.
7) Now go to View + Sidebar + Firesheep or press Ctrl+Shift+S and click on it.
8) A new sidebar opens with a settings icon for you to set your preferences.
9) Click on start capturing -> and now try logging to your facebook account.
10)You should be using a unsecured wireless network to execute this.
11) You can now see that your facebook session has been recorded. And its not just facebook .. there are a plethora of sites that can be hacked.

So you did all this ... you feeling on top of the world?? or you see nothing...muhahahahahha...
If only life was that easy. Its got some tweeks to it. But its definitely possible.

My Learning
1) If you are getting an "error backend exited with error 1" when you stop capturing ... I ain't sure what it means but I was able to read my session cookies .. It still works for me.
2) The hardware needs to be appropriate to successfully execute this attack.
e.g. I read this in a blog that it doesn't work on intel.. the author must have tried it but I dont vouch for it.. I have AMD Turion and it works fine on my machine.
3) I could only read my own traffic .. when I tried using it on my university wifi. Such a waste ! :(
4) You can hack a session only ... not passwords etc ! So if you had your hopes high on this ... too bad.
5) I played around with it for sometime and I will attach a screen shot for your information.

Disclaimer: This might be illegal. I used it for educational purposes only. No harm was caused to anyone's account. My friends have willingly participated in this experiment. :)
Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)