Hacking Facebook accounts using Cookie Stealing and Session
Hi-jacking
How to Hack FB Account using Cookie Stealing and Session
Hi-Jacking.
Hack Facebook Account June 2016.
Warning: This is only for EDUCATIONAL purposes to make you aware of
how your FACEBOOK account may get HACKED so that you may PREVENT
it from getting hacked.
The person posting this or the blog is not responsible for any type malicious
activities performed by anyone who is reading this!
Authentication Cookies used by Facebook :
The cookie which facebook uses to authenticate it's users is
called "Datr",
If an attacker can get hold of your authentication cookies, All he needs to do
is to inject those cookies in his browser and he will gain access to
your account. This is how a facebook authentication cookie looks like:
datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;
An attacker may use variety of methods in order to steal your facebook authentication cookies depending upon the network he is on, If an attacker is on a hub based network he would just sniff traffic with any Packet Sniffer and gain access to victims account.
If an attacker is on a Switch based network he would use an ARP Poisoning request to capture authentication cookies, If an attacker is on a wireless network he uses a tool called FIRESHEEP in order to capture authentication cookie and gain access to victims account.
Here in the example below I
will be explaining in simple STEPS how an attacker can capture your
authentication cookies and hack into your Facebook account with Wireshark.
Step 1 - First of all download wireshark from the official website and install it.
Step 2 - Next open up wireshark click on analyze and then click on interfaces.
Step 3 - Next choose the appropriate interface and click on start.
Step 1 - First of all download wireshark from the official website and install it.
Step 2 - Next open up wireshark click on analyze and then click on interfaces.
Step 3 - Next choose the appropriate interface and click on start.
Step 4 - Continue sniffing for around 10 minutes.
Step 5 - After 10minutes stop the packet sniffing by going to the capture menu and clicking on Stop.
Step 6 - Next set the filter to http.
Cookie contains “datr” at top left, This filter will search for all the http
cookies with the name datr, And datr as we know is the name of the facebook
authentication cookie.
Step 7 - Next right click on it and go to Copy - Bytes - Printable Text only.
Step 7 - Next right click on it and go to Copy - Bytes - Printable Text only.
Step 8 - Next you’ll want to open up Firefox. You’ll need both Greasemonkey and the cookieinjector script. Now open up Facebook.com and make sure that you are not logged in.
Step 9- Press Alt C to bring up the cookie injector, simply paste in the cookie value into it.
Step 10 - Now refresh your page.
!!!!BINGO!!!!
You are logged in to the victims facebook
account.
Now comes the important part!
HOW TO PROTECT YOUR ACCOUNT?
Now comes the important part!
HOW TO PROTECT YOUR ACCOUNT?
Well, the best way to protect yourself against a session hijacking attack is to use “https:// " connection each and every time you login to any of your accounts in Facebook, Gmail, Yahoo or any other email account. As your cookies would be encrypted so even if an attacker manages to capture your session cookies he won't be able to do anything with your cookies. Also avoid using unwanted apps that you use in FACEBOOK. Keep changing your password frequently. Use tough passwords which are hard to guess with a combination of uppercase and lowercase characters with symbols in between to make the password very strong.
Hope you ENJOYED this post!
Warning: This is only for EDUCATIONAL purpose.
If any inquiry about this post feel
free to comment.
Thanks for Visit.
Tags:- Facebook Hack, How to hack Facebook Account, Hack FB Account, Fb,
Facebook Hack 2016, Hacking Facebook, Hacking FB, How to hack fb account using
cookie june 2016, Get fb account password free, Hack free facebook 2016, Hack
Facebook 2015, Hacking Facebook Id, How to Hack Account, Madlr Facebook Hack,
Trick to get facebook account password, Trick to Get free fb account Password,
Get Free Password 2016, Tricks, Hacking