what is sound track? :)

@kgulle2 *facepalm*

Jeeeez everything in this vid could have been explained in 2mins and less, thanks for waisting my time...

its easier to ask somone fore their facebook username and password :D

do u have to have a laptop to use wire shark?

@13ROBG no you can do it on any computer that is on a network

name of the song

Thanks for your very informative video!

After messing with wireshark a couple of hours on my macbook, finally I'm in a random facebook account with a cookie packet which I grabbed from wireless monitoring

Experienced users!! Will this work across the server??? Unless I can do it without being on the same computer, its absolutely pointless.

ima wireshark user and most websites encrypt the passwords. now saying that,if you get passwd not salt hashed for regular hash you can use cain&abel to decrypt them. but my point is...why hack a email or fb accts? i have probably over 300+ emails/psswds and i have no use for them....lol

@w3bgho5t: can you teach me some hacking? if you are interested then email me at hashley_93@hotmail.com!

is hassan here..

To answer some of the questions that have popped up:

@MrCostasxo - You sniff the wireless LAN interface; wlan0 in this example.

@Frlecube - If you sniff this wirelessly, you can promiscuously sniff anyone's traffic.

@nicos808 - Facebook's cookies don't check for exclusive connections. That being said, it doesn't matter how many people have the cookie.

How can i snif in a wirelless lan ?

Whats the point here? Your are sniffing your own traffic

@Frlecube if you have a jailbroken i device download pirni it'll sniff packets from any wifi ur connected to so ur not limited to ur house

what would you want to confuse facebook into thinking you are the user ALREADY logged in?

this add on edit cookies does not work on firefox 7

For Everyone who asking:

Jeffarama - Symphony Extended

so, you have to be using the same computer that the person uses/or connected to the same network as them? So this wouldn't work if I was at work and wanted to hack someones facebook at home?

@mawkheaf you could download hamachi, create a network and get both computers into that network so you can connect wireshark to the hamachi interface i think that will work

which music is that? Nice vid but I've got FaceNiff for Android and i can sniff the whole network with it, too.

kak mak

@exposed97 because Netflix uses silverlight not flash?

ul

@johnoshea360 Only if the user opts in to SSL in their options though. Most still haven't.

Guake FTW!

you do this only when facebook is opened up before

will you decipher the ...::: OnyxCode  :::...

Why the hell do yyou need to SNIFF fb cookies? Use Mozilla.

So you can only retrieve information from your computer?

@zouzouhip download ubuntu ................

Thanks for the video; great music too

You'll find it on music-shake website

Thanks for the video; great music too

symphony (3:33) by jeffarama

Plays: 236,645 •Comments: 55 •Ratings: 94 •Favorites: 15

Genre: Classical/New Age •Mood: Warm/Comforting •Theme: Other

you're... with cookies there is no needs to know the password and if it using SSL no one can't stop us from intercept the network, right?

@johnoshea360 I dont understand what that has to do with the video? He isn't sniffing for passwords here which as ur right facebook use SSL so packet sniffing wouldnt pick up ay username or passwords.

He is picking up the login cookies which once added should confuse facebook into thinking you are the user ALREADY logged in. It seems your comment is irrelevant to the video unless im mis understanding what you are saying?

@martynardelli You can use Facebook without SSL.

@martynardelli you dont actually need the login cookie information either really. if you insert any c_user, xs, sct, pw, presence and id field you can even replicate it off of a home page chat instance. facebook (and most other social networking programs) are open to these tricks because of the necessity of cookies.

I invite you all to join us... S4b3rstealth.forumotion.pro

quite useless

@alphabravo8 Far from it. Lets say he really needs to have someones facebook account really bad. The person at hand happends to use an iPhone to browse facebook. He connects to a public network. We, who have been following this poor sob around also connect to the network. We start up wireshark and do this. We can preconfigure alot of stuff so we don't have to go though this again. Then when we have the captured data we can get the password/email combination.

You did absolutely nothing m8

Very interesting, and informative. Please make video faster.

if im capturing while the victim login, how can i see the pass?

Add N Edit Cookies is not available for 3.6.12, the last version of Firefox...

lol he never hacks anything

So, just the change the value of the cookies and you're signed in as another person?

but explame how to do with voice

name of the song?

would this work for games such as runescape? Considering that facebook might be more secure anyways?!

0:15 what name??that thing???

Will this work If victim has logged out before I edit the cookies, please reply.

how did you make your windows all jello like?

@ggordiep its not windows. i think its Ubuntu

Respond to this video...

it's ubuntu

great tutorial! thanks