If I'm not mistaken most sites use PHP sessions(which can not be edited by the user) instead of cookies for important stuff like login info. Cookies are usually just used for things that don't need to be secure. So the cookies may or may not be that useful. That being said:
As far as saving cookies from wireshark I'd just copy and paste them into a text editor and save them. You can also click file then save in wireshark to save all of the capture results as a pcap file.
You can either add the cookies using cookie manager or you can go to the site and if the site has a login then log into or create another account to get your own cookies, after that you just need to change the values of your cookies to that of the stolen cookies.
just click add and put in info. Repeat for each cookie.
Change your cookies:
In cookie manager check the box next to the cookie you want to change and click edit. Then change content to whatever the value of the stolen cookie was. Repeat for each cookie.
Note: Leave the name of the cookie alone, the name is basically the name of a variable, and content is it's value.
Step 2: Go to or refresh the page.
Results: depend on what the cookies are used for.
If you happen to have a server to run it on, you can use this to test if you are editing the cookies correctly:
- Code: Select all
It prints the value of the cookie, which is 'no' by default. This will also set the cookie back to 'no', so if you refresh it will return to 'no'.