Description: CookieMonster that demonstrates HTTP session hijacking attacks. It sniff your
network interface and hijack all cookie. The hijacked cookies
can be edit and/or injected in your Firefox. It include a arp poisoning tool.
In this demonstration, I explain how to use CookieMonster (v0.0.1)
* I run it in Backtrack5 in a vmware subnet.
* The target is a Windows XP, with saved session on facebook.
Some cool feature coming soon like the ability to inject iframe in content to force the target to expose cookie.
Available here:
sourceforge.net/projects/cookie-monster/files/cookiemonster-0.0.1.tar.gz
sourceforge.net/projects/cookie-monster/
or git
$ git clone git://cookie-monster.git.sourceforge.net/gitroot/cookie-monster/cookie-monster
Advice, enable SSL.
Tags: CookieMonster , hack , cookie , firesheep , linux , backtrack , security ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
i will definitely try this app
I'll be using it on some proprietry hardware I've been given to test, Thanks to the poster for sharing.
thanks for sharing ill b trying it out
nice