The cookie which facebook uses to authenticate
it's users is called , If an attacker can
get hold of your authentication cookies, All he
needs to do is to inject those cookies in his
browser and he will gain access to your account.
This is how a facebook authentication cookie
looks like:
"Datr"
datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;
.An attacker may use variety of methods in
order to steal your facebook authentication
cookies depending upon the network he is on, If
an attacker is on a hub based network he would
just sniff traffic with any ***Packet Sniffer***
and gain access to victims account.
LETS Start:-
step 1:- First of all download wireshark from
here and install it.
step 2:- Next open up wireshark click on
analyze and then click on interfaces.
Step 3:- Next choose the appropriate interface and click on start.
Step 4:- Continue sniffing for around
10 minutes.
Step 5:- After 10minutes stop the
packet sniffing by going to the capture
menu and clicking on Stop.
Step 6:- Next set the filter to
http.cookie contains "datr" at top left,
This filter will search for all the http
cookies with the name datr, And datr
as we know is the name of the
facebook authentication cookie.
Step 7:- Next right click on it and goto
Copy - Bytes - Printable Text only
Step 8:-
Next you'll want to open up
firefox. You'll need both Greasemonkey and
the cookieinjector script Now open up Facebook.com and make sure that you
are not logged in.
Step 9:- Press Alt+C to bring up the
cookie injector, Simply paste in the
cookie value into it,
Step 10:- Now refresh your page. You
are successfully logged in victim
account.
it's users is called , If an attacker can
get hold of your authentication cookies, All he
needs to do is to inject those cookies in his
browser and he will gain access to your account.
This is how a facebook authentication cookie
looks like:
"Datr"
datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;
.An attacker may use variety of methods in
order to steal your facebook authentication
cookies depending upon the network he is on, If
an attacker is on a hub based network he would
just sniff traffic with any ***Packet Sniffer***
and gain access to victims account.
LETS Start:-
step 1:- First of all download wireshark from
here and install it.
step 2:- Next open up wireshark click on
analyze and then click on interfaces.
Step 3:- Next choose the appropriate interface and click on start.
Step 4:- Continue sniffing for around
10 minutes.
Step 5:- After 10minutes stop the
packet sniffing by going to the capture
menu and clicking on Stop.
Step 6:- Next set the filter to
http.cookie contains "datr" at top left,
This filter will search for all the http
cookies with the name datr, And datr
as we know is the name of the
facebook authentication cookie.
Step 7:- Next right click on it and goto
Copy - Bytes - Printable Text only
Step 8:-
Next you'll want to open up
firefox. You'll need both Greasemonkey and
the cookieinjector script Now open up Facebook.com and make sure that you
are not logged in.
Step 9:- Press Alt+C to bring up the
cookie injector, Simply paste in the
cookie value into it,
Step 10:- Now refresh your page. You
are successfully logged in victim
account.