Twitter cookie fail + FireSheep
Loading...
Uploader Comments (mubix)
All Comments (7)
-
@mubix The session ID is likely held to your account's row until the next login, where it would be regenerated dynamically and the row updated. It's common practice, as most end-users don't touch the cookies. They're relying on human stupidity for security, which is NEVER a good idea. Oh well, no worse than the XSS exploit in New Twitter not too long ago. Got a lot of cookies that day. ;-]
-
I don't know what they teach in school for for computer science, but what I do know is, there are multiple vulns in not just cookies, but even php session data. I've seen implementations that show the php session data in the referrer urls from server logs, where the hash was enough to be used to login as the user when combined with their email or signon for the sites. You can also copy cookies to the clipboard to use in other browsers with simple javascript from the address bar.
6:21
FOPTA- 1-1 Backtrack Basicsby redcodefinal2,826 views- 8:03
OpenDNS Webinar: Cloud DNS Security [1/4]by OpenDNSTeam320 views
- 2:12
Hacking Windows 7 with Metasploitby BlackHat201291,773 views
- 2:52
Skype DLL Hijackingby TheSoundDevil1,542 views
- 5:38
How To Use THC Hydraby TeChNoPhr34k32,449 views
- 1:32
Quick intro to arp poisoning and sniffingby xeu5483 views
- 5:41
How-to: Use NETSTAT.EXE to detect spyware/malwareby pcmedianet185,654 views
- 4:58
How to Detect If your pc has been hacked or notby ComputerInstitute76,711 views
- 5:05
pw Stealer/Trojaner in TXT verstecken (HD)by monkeymoko4,361 views
- 2:17
How to install the Firesheep Firefox addon (Windows XP)by magnenygaard31,461 views
- 6:29
How to protect your Ubuntu PC from intrudersby amzertech13,779 views
- 3:27
Wireshark - Password Stealingby NarpytheCrimeDog308,042 views
- 1:54
Hacking Facebook FIRESHEEP Firefox Public WIFI PREDATORby WiFiSniper6,673 views
- 5:16
Cracking Router Loginsby linuxstyles56,909 views
- 6:52
RDP Brute-Hackby xdevnet19,640 views
- 11:20
Unterricht- Phising-Siteby WeisserBart210 views
- 4:33
Blue Snarfingby xeu51,453 views
- 8:10
Trojaner erstellen (CIA1.3)by SolutionNetworks125,177 views
- 3:56
Hacking a VPN connection - PPTPby yesrno13,910 views
- 2:55
How to Beat Firesheepby 8terabytes8190 views
Lots of sites don't destroy cookie data on logout, only destroy the current session in the current browser, but saved cookies(ala firesheep) will revalidate the session if they don't do date/time stamps or even IP checks.
Thats kind of the point of firesheep, to do some drive by session stealing, and then take the cookies home with you to login from another place. I know the Hak5 forums do IP and agent checks, so if someone stole the cookies but came in from another IP you have to login again
xxdigipiratexx 1 year ago
@xxdigipiratexx it was my understanding that when a 'sign out' or 'log out action occurs that token or session ID should be invalidated on the back end. I realize thats not always the case, but do we really teach CS majors that leaving authentication tokens laying around a database is a ok idea?
mubix 1 year ago
Not sure what you are trying to show, but firesheep obviously saved the cookies and used them again to login as you. Twitter isn't using unique session data, which looks to me like you can save the cookies and take them with you anywhere to login again and again. Lots of sites fail to use unique cookie data per session. Or am I missing another point you were trying to make in the video?
xxdigipiratexx 1 year ago
@xxdigipiratexx I'm trying to demonstrate that their signout procedure doesn't invalidate the session like it should
mubix 1 year ago