Follow us on Twitter!
Don't judge the unknown - Grindordie
Friday, April 18, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 20
Guests Online: 17
Members Online: 3

Registered Members: 82823
Newest Member: Andyrayfun
Latest Articles
View Thread

HellBound Hackers | Computer General | Web hacking

Page 1 of 2 1 2 >
Author

Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 01:11
Hey guys, I've been looking around quite a bit for a tutorial on session hijacking on various hacking websites and on Google, and I was wondering if anyone had a tutorial or knows a good one on Session Hijacking by using a cookie stealing web page and then using that cookie to, of course, hijack their session. Thanks.


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 01:16
How exactly would this work? Do you just type this into your browser address bar?


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 01:17
MoshBat wrote:
This should cover you:
javascript:void(document.cookie="<cookie>"Wink;
Actually I hear Firefox may have some kinda magic cookie changing thingymajig...


The person who I am targeting is using IE8, so it's all good. Smile


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 01:25
Alright, this should be easy then. From all the shit tutorials I've read, this is all I have to do. Please correct me if I'm wrong;

1. Set up a free website with a cookie stealing script embedded into it.
2. Make the victim visit the website
3. Once you have their cookie, type javascript:void(document.cookie="<cookie>"Wink into the browser address bar.

And the end, right? Please don't flame me if I'm wrong, I'm new to this.


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 01:40
Ahhh I see, so the website that the person is logging into has to have an XSS vulnerability or HTML turned on in the forums or something like that?


Author

RE: Session Hijacking and Cookie Stealing

ynori7
Member



Posts: 1486
Location: #valhalla
Joined: 08.10.07
Rank:
God
Posted on 10-04-10 01:42
ThunderHorse wrote:
or HTML turned on in the forums or something like that?

Yeah, that's why I always keep HTML turned off.


halls-of-valhalla.org/images/affiliateLogo.png voodoorage.halls-of-valhalla.org/images/smallLogo.png
i537.photobucket.com/albums/ff338/ynori77/archenemysig1.jpg
ynori7 http://halls-of-valhalla.org
Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 01:49
So the cookie stealing method for Session Hijacking wouldn't be practical, considering I'm trying to target a specific person on a specific site. So I would need to use the TCP method, correct?


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:20
Um, I don't know who you think you are kid, but you don't have the right to talk to anybody like that. Grow the fuck up, I asked a question. Fuck you.

EDIT: You're not funny, internet humor is gay.

EDIT: And you're bipolar, lrn2lithium




Edited by on 10-04-10 02:22
Author

RE: Session Hijacking and Cookie Stealing

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 10-04-10 02:22
Like shitty threads are tied to newbs, sessions are usually tied to IPs. Grabbing a session hash nowadays won't get you very far.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:24
Are you flaming me? You were a newb too at one point, if I researched enough to my liking and I feel like making a fucking thread about it, then I will, and it's not up to you to decide how good it is. I didn't make a low quality post, I asked a ew questions. Don't act like your better than me, because you aren't.


Author

RE: Session Hijacking and Cookie Stealing

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 10-04-10 02:27
ThunderHorse wrote:
Are you flaming me? You were a newb too at one point, if I researched enough to my liking and I feel like making a fucking thread about it, then I will, and it's not up to you to decide how good it is. I didn't make a low quality post, I asked a ew questions. Don't act like your better than me, because you aren't.


I just didn't like this particular thread, that's all.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Session Hijacking and Cookie Stealing

Futility
Member



Posts: 725
Location: USA
Joined: 17.12.07
Rank:
God
Posted on 10-04-10 02:29
Pleasepleaseplease cut it out. Seriously. Spy, Mosh, people are idiots- it's a universal truth. Thunder, people are dickholes- it's also a universal truth. Stop getting so butthurt over everything, and stop giving each other stuff to get butthurt about. Deal? I'll take your future silence as a yes.

Anyway- check this out. It should help. Or not. Who knows?

Oh! And internet humor is the shit and in no way, shape, or form gay.


i252.photobucket.com/albums/hh11/zanimabean/Zim.png
Futility91@hotmail.com Futility91
Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:31
Thanks Futility


Author

RE: Session Hijacking and Cookie Stealing

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 10-04-10 02:33
Futility wrote:
Oh! And internet humor is the shit and in no way, shape, or form gay.


Gay people might take offense to that. They want to be "the shit" too, perhaps.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:34
MoshBat wrote:
ThunderHorse wrote:
Um, I don't know who you think you are kid, but you don't have the right to talk to anybody like that. Grow the fuck up, I asked a question. Fuck you.

EDIT: You're not funny, internet humor is gay.

Me? Fuck you! Yes, you!
That aside, fuck you.
*That* aside, fuck you.

But seriously, you're struggling like fuck with a very basic concept, a concept that a mere kid, like myself, has grasped. Does that make you feel special?
A few times now, I have seen you post utter shite, without thought, and you have the nerve to sit there and talk shit at me? I, who have given you more help than you truly deserve?

SHUT THE FUCK UP, BITCH. YES, GUYS, IT'S FUCKING CAPSLOCK TIME. YOU ARE TALKING TO ME AND SPY, AND YOU ARE TRYING TO TREAT THE PAIR OF US LIKE... Sorry, it looks silly... kids, yes we're both much, much smarter than you are, that much I know for fact. I advise you back down now, you might manage to pick up just a little bit of dignity up off the floor on your way out. Don't let the door hit you, there are a few of us that would quite like to do that.

Futility, we tried to be nice, tried to be helpful, but it's just not working.


Lolwut


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:35
No thanks, I won't back down. I'm not an e-bitch.


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:36
I see what you did there.


Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:38
Just because I failed to grasp the concept of one thing does not mean that I failed to grasp the concept of everything else. That's called a logical fallacy, and it certifies you as a troll.


Author

RE: Session Hijacking and Cookie Stealing

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 10-04-10 02:39
GUISE LOOK AT HOW MANY MEMES I CAN FIT IN IN THIS POST

DUCKROLL



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: Session Hijacking and Cookie Stealing


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 10-04-10 02:41
Memes? Why are you spamming my thread talking about memes. Grow the fuck up.


Page 1 of 2 1 2 >