Real!!! Backtrack 5 R3 Facebook Hacking Real!!!

[ALF_]

This is a demonstration on how to lift the authentication cookie of a user on the same network surfing Facebook.

Once again this demonstration is for EDUCATIONAL PURPOSE ONLY!!!

http://www.youtube.com/watch?v=rEINqednJRU&hd=1

[WallShadow]

cool. Now can you please explain to us all how this works so that we may better understand it?

[ALF_]

cool. Now can you please explain to us all how this works so that we may better understand it?

In this video the way this is working is by creating a Man in the middle between the router and the Victim. In the first step the Attacker is going to Arp Spoof the the router into thinking that the attacker is actually the victims computer and the step aft that will be in reverse.

Now that the Arp Spoof is up and running the Attacker is going to need two extra tools Greasemonkey and Cookieinjecter to be able to assist us in the next step using Wireshark.

Starting the Wireshark to sniff the traffic for just Facebook http GET sessions with the filter http.cookie.contains datr
Once the string is found it is then input to the cookieinjector box on the browser.

So what is happening now you have access to the victims session till it expires or they log out. That is what is happening in Short.

[limdis]

Consider this a verbal warning. Stop advertising your shiz. Want to discuss something or post vids then cool. But don't come here for hits....