Can we assume you're safe on a wired network?

im using McDonalds internet from now on!!

2 people download firesheep

im going on a plane soon... they'll be flying and then they'll have a hacked face book!

To EVERYONE who thinks using SSL will keep you safe your wrong... google sslstrip

THANKYOU. You're the best.

LOL Epic 0:41 :D

scary firesheep, woahhhh! :)

Ty very much for this informative video !

If you're trying to protect yourself from firesheep, why would you give the link to firesheep? :(

@jmanfan213 any idiot could find it in seconds anyway so he is hardly dishing out some huge secret.

......cant u just clear the cookies?

I am quite annoyed that I made a video on Firesheep, with a clear disclaimer, and YouTube removed it :( I am not even sure they have reviewed it fully, as I had a section at the end saying how to protect yourself from firesheep. YouTube even won't tell me which community guideline it breaks.

All in all, gutted.

What should I do?

i know someone named daniel davis...

you can also use blacksheep to see who uses firesheep on the network

@coolk1999 I used it.

Tinkernut vs Nigahiga :D

he is mostly wrong but still has the correct idea and a good video

at least i use gmail :)

27,561 people now know how tho hack facebook thanks to gigafide. Thanks gigafide :)

Hi I love your channell

lol people in starbucks probably are like "WTF?"

good thing i NEVER use the internet in public

@alister113 thanks that's what I thought. The video just made it seem like Firefox was the only browser that had the problem, which didn't make much sense. I see now that he meant FireSheep is a Firefox addon.

i assume that you made this video to help people to protect themselves, but i think you just got a bunch of "wannabe-hackers" to try this out...

@mariosunshinefaan well hackers gonna hack ?

does firsheep work on tumblr?

@thunderstorm01268 yes, unless tumblr uses h tt ps (i can't type it as one word)

2 people got hacked

What if i share my wifi connection with my neighborhood? Can they still be able to hack my facebook?

@gmax341 yes

@gmax341 yes if they have firesheep on their computer and know how to use it they can connect to you, or you can connect to them and access their facebook or similar things :)

I'm apl for Option 3 (don't use public wi-fi), but out of curiosity, why do you say only Firefox has this problem? Your description implies it would effect other browsers too.

@Luiji99 because firesheep is an addon for firefox and doesnt work on any other browser

@Luiji99 I think this is what your on about: If you use firesheep can it get info from other browsers like safari, Internet explorer and Opera ?

The answer is yes because all of those are internet browsers not completely different "Internets" because if there were people who use firefox, safari or others there would have to be a different website for each browser, exactly the same as the one for the other browser (if you understand what i'm on about).

they can also use it to hack your youtube and email too.

well done man, thanks for the info

lol

I like the humor in this one.

im off to the library!

dosent it use ddos?

what a great reason to stop using facebook!

unencrypted cookies is just stupid....

anyone who uses facebook deserves any bad crap that comes their way...

FACEBOOK is evil..wake up and smell the sh!t!

the 2 dislikes are hackers

can this site be used to extract bank information?

@jezx21 No. When Firesheep picks up a cookie, it can only use it, not extract the information inside. So when the cookie is making it so you are logged into facebook, Firesheep is using the same cookie to let someone else log in to facebook as you, but it doesn't extract your password and username from the cookie. 

hey if you read your comments please answer this question. Can you make a vid on how o dds?

Use a mifi wireless

hhtps is the condom of the internet

SENSI :D

So you need firefox to have this hacking plug-in but does that that mean your safe

when you use chrome or no

@IzelloAoM The extension is for firefox only. It lets you pick up cookies sent from a computer over public wifi, no matter which browser sent the cookies.

Isn't an exploit anything that takes advantage of the way something normally works for malicious purposes?

Does the same go for using a twitter client on an iPod touch/pad?

theres another one called black sheep for firefox which will prevent it

how do you know about all of this information your what is your did you study in unverscity??

"like" this comment if you LAWLED when gigafide said all u hacker wannabes out dere

would you say this is similar to wireshark?

please help every time i install it and restart firefox it just says to restart it everytime :(

Or, use BlackSheep

is it possible to track a mobile phone?

i downloaded it but cant get it to work please help i thought it was meant to say like start capture or something but mine doesnt it just freezes most of the time

hacker wanna be's ;}

will firesheep work on a wierd network?

Lol the beginning was epic xD

"I can see all you hacker wanna-be's rushing right now right over there..." hahahahahahahahaha

What about if you use Opera's Private Tab?

nice now i can f*** with my friends, by logging on to their facebook and asking chicks for bj's xD

we cant see ur website securely cuz u dont have an ssl certificate

Gigafide, if I use the campus wifi connection, which has a WEP key, will I still be in danger?

Thanks!

Hey gigafide, ive been watching ur vids from shadows, however i wish to correct you with "secure" firefox addon, that facebook chat seems to be blocked or broken with that addon. so you cant use the chat, theres a yellow triangle with screamo mark on the place of chat button

actually, it's NOT a hacking program.

1:20 nice use of paint ;)

@ 1:27

i think the data be hacked after it back from server not  from you

why that didn't occur @ wire network ?

you are ace man, thanx

thnx dude! but i can't chat ;@

simlalarrly LMAO... wait a minute..what do u mean "firesheep recommends fire shepherd",they created it and teach us how to prevent our account being hacked into? why do they even create firesheep in the 1st place? 

Hey Gigafide can you tell me how to reduce size of a videofile.

Hey Gigafide can you tell me how to reduce size of a videofile.

What if i used chrome?

@NickIsOriginal ima hack you]

Good! I like to see Daniel act with personality and show his personality. He is funny and that makes his videos better. They just keep getting better and better and better and better! If this keeps up Discovery channel will just have to give him his own show or something kind of segment of a show at least. I used to not like Rodney Reynolds as much until he started doing his own live show. Now that you see his personality, it gives him a lot more depth.

Hell ya!!!!

Daniel don't stop and he don't quit!

How about using Hotspot Shield? Does it give more protection?

Fireshepperd is actually a false sense of security because it does not block firesheep like SSL would. It just confuses the hell out of it.

I wanted to use firesheep to get my mom to stop snooping around of my stepdads (got divorced) email account, but it wont work on an encrypted connection. Any ideas?

What could be the reason Facebook gets hacked on a computer not on wifi? I have a lot of family members getting hacked.

@testrider78 Viruses from them clicking links on facebook they shouldn't be. Or rouge applications.

This is called session hijacking, and firesheep is a lame-ass excuse of a session hijacker. Professional wireless attack software will lock sessions as well and automatically decrpyt hashes/salts (if you know how to find out encryption types and salt placement).

I liked the part about the newfags all running for this software though xD

@superant10000 The point of firesheep was not to give people a new tool to hijack sessions. The point of it was to show big name websites how insecure their sites actually are.

@Randomstand Well it really only exposes how insecure wireless is, not a website.

You can't session hijack if you use secure html, and it's your choice to do that or not when using wireless networks.

Besides, no-one can steal your password because of the encryption & salt used, so it's up to the user to be smart or not.

If you use your laptop on a common connection - change your password on log out?

FireSheep won't work with my version of Firefox :(

Well you can't blame firesheep. I don't blame it for stealing cookies. They're tasty. Do not reply to this and call me a dunce or anything becuase it's a joke for all of you out there wothout a sense of humor

Does this affect iPhone/iPod touch?

can u tell us how to steal it, instead of protecting it

Didn't house hold hacker did this

AWESOME VIDEO

@forid200 i never said that firesheep gives them your password.

@gigafide i heard from other people i never said that you mentioned in the video that it gives the password any way great video's keep it up!

@gigafide you could go into account setting and change it though?

I wish people would shut the fuck up correcting gigafide, just sh.

Thank you so much for this, I live on a school's campus and honestly have skiddish about checking Facebook for this simple reason.

My question though is, Can someone use FireSheep to find your password through a smartphone?

@maylortaylor987 It seems pretty resonable because phones almost always use Wi-Fi connections so watch out but im not a computer/internet genius so i dont really know (:

1) NOT an exploit. It's how the session is created. Anyone using basic utilities can capture this information.

2) It's a plug-in for firefox that allows anyone to capture and impersonate another users's cookie.

3) Cookies contain session information only. No username/passwords, but you can impersonate someone to get into their account. TW & FB are great examples, but it can be ANY session that is NOT encrypted.

All Cookies should be encrypted. Plug-in was created to show this weakness.

@mdedmon i'm not sure that u know what an exploit actually is...cause this is a textbook example

@gigafide u know shit

Yeah.... Another person covering Firesheep... Thanks alot.

Thanks for telling yet more wannabe script kiddies about this exploit, as if there wasnt enough already.

And you even included a link! You didnt even make them google search!

Gigafide, can you make please a tutorial video like : how to download windows xp free and put into a cd?Have a wonderful day ! Thx for all the videos!

@mradval i could do that for u if u wont ?

great vid and extremely helpful. definitely liked and favorited in order to keep as a reference

I wouldn't say it's a Firefox exploit, its more a SSL login on the pages you mentioned like Facebook.

@klaboem0 firesheep is a classic textbook example of an exploit. It exploits the session connection issues with facebook, twitter, etc. If you read the creators blog (at codebutler), he even calls it an exploit. It's getting slightly annoying to see how many people depend on Youtube comments to make themselves look intelligent.

@gigafide I don't want to look intelligent at all. At 0:05 you clearly say "Firesheep is a FIREFOX exploit" which is completely wrong. It's a SSL login problem on websites like Facebook and Twitter. It has nothing to do with Firefox.

@klaboem0 oh ok, it seems like you just got confused by my wording. it's an exploit that runs on firefox (it's a firefox only extension). it's not an exploit for firefox itself...it can sniff the packets no matter what browser it comes from.

@klaboem0 I don't disagree with what you are saying... the real question is.... why are these social sites so stupid when it comes to security? I mean seriously.......... Think about this for a second; why? this is simply a gold mine for sniffers; of course the next level would be a man-in-the-middle-attack which would make all data in plain sight using fake certificates; but it would at least dissuade the noobs from sniffing for crying out loud.

gigafide you are wrong. In the Cookie only are the session number, so that the server remember to you. these session are combinated to a account on facebook. so firesheep only clone the session id not the password!!!

@zille3000 DONT TRY TO TEACH GIGAFIDE

HE IS MASTERMIND

@JOHNLOBO789 sorry, but every one can be wrong. It's not a problem.

He know a los of computers and I too. He make his videos and I make my vid. if anyone is false the community can teach him

@zille3000 OK BRO DONT GET HEATED BEEEEEEEEEE COOOOOOOOOOOOL

@zille3000 yes.

@zille3000 the cookie stores website authentication, which requires the username and password. i never said that the username and password could be stolen from the cookies. 

@gigafide ok it's an argument. you right

DUDE dont tell ppl how to protect them selfs!

@jesperq8 Couse you are the 1337 Hackzooor who uses this, to raise your self-esteem ? haha

eh' nice video!

Anyone else planning to go to the library now?

If you logout after using Facebook the session cookies wont work anymore. And whoever had access to your Facebook will have to login with the right credentials. Most people just close their browser or sleep their computer. So ALWAYS logout. Just my two cents.

@gigafide the subscription box is glitching badly would you have alternatives we could use?

Stupid firesheep

Cain And Abel is easier to use And better

@sileysut8991 can u send me a link. =D hahaha

Your upper shelf to where your sub-woofer was sitting on was really dusty.

can i get hack the same way if iam using google chrome

@1800Supreme yes

@melvinromeroreyes haha, my desktop has the same one too.

love ya gigafide!ya show us so much!i love the way of ya presentation thats why GIGAFIDE IS BETTA THAN THAT KIPKAY

This is why Firefuks is dead

Firesheep System Requirements

Firefox: 3.6.12 or newer. 32-BIT ONLY.

FFFFFFFFFFFFFFFFFFFFFFFFFFFFFF­FFFFFFFFFFFFFFFFFFFFFFFFFFFFFU­UUUUUUUUUUUUUUUUUUUUUUUUUUUUUU­UUUUUUUUUUUUUUUUUUUUUUUUUUUUUU­UUUUUUUUUUUUUU

Haha, great video, thanks gigafide :3

How about in school? You're fucked in the ass if you don't know how to encrypt the data.

Nice video keep up the good work :)

is this only for facebook or any website?

hahaha, even if the topic doesn't apply to me (i use Chrome) i know i can at least get a good laugh out of the video.

"... Alright, that's just dumb..." XD

@thegr81337 all browsers are effected by fire sheep

@RichardULZ oh, ok, i had come under the impression it was only firefox that was affected. 

Nice video. Just goes to show, again, the most insecure part of any system is the user. :P

i know it , every that i knew !!

but there are software than block firesheep!

STARBUCKS HERE I COME!

I believe their called, "Skiddies"

@MrApplseed There is a difference between There, Their, and They're.

@MrApplseed wow, they merged script kiddies? man, i'm really behind on slang these days.

Apparently YouTube didn't like my comment, but I just have two words "SSL STRIP"

does fireshepard protect against google chrome?

@abey34 from what i understand (just from the vid) this only affects Firefox, so Chrome should be safe... from this specific exploit that is.

However, no browser is really "safe" on an unsecured, public network.

@thegr81337 nope it hacks a few more sites and any browser can be hacked

@abey34 yes it should, since it's a console program and not browser specific. Any web browser is subject to the Firesheep attack.

@gigafide actually your wrong!

Whatch this youtube video from housholdhacker

youtube(dot)com/watch?v=9T8xaD­oYNmg

@abey34 use firefox for more security and so ur not dosing fb

@abey34 use firefox for more security and so ur not dosing fb which 4 one person doesn't do shit but still.

there are other programs that can do the same thing this is nothing new, but it great to spread the awareness

Damn thats scary

firesheep is just a nice graphical way to sniff packets. this was possible to do with wireshark and other programs that sniff packets, since as long as I can remember.

11th!

first !

lol I was first by 1 second

8th

8th !!!!!!!