EvilZone

Hacking and Security => Beginner's Corner => : hightower December 19, 2015, 03:59:24 PM

: can I hijack webmail session from info in a pcap file?
: hightower December 19, 2015, 03:59:24 PM: Hey all, I'm working on a challenge to extract as much info from a pcap file as possible.

The file definitely shows the user was in yahoo mail and I think that's the target.

Yahoo is all https now, so is it possible to hijack the account (it's a test account, not someones personal mail) with the cookie in the pcap file?

Apols if this is a really dumb question, I'm a total noob.

Cheers, HT.
: Re: can I hijack webmail session from info in a pcap file?
: f13rc3bru73 December 19, 2015, 04:30:21 PM: Why you haven't tried it yet? Just modify your browser cookies with any addon
: Re: can I hijack webmail session from info in a pcap file?
: proxx December 19, 2015, 06:35:07 PM: : hightower December 19, 2015, 03:59:24 PM
Hey all, I'm working on a challenge to extract as much info from a pcap file as possible.

The file definitely shows the user was in yahoo mail and I think that's the target.

Yahoo is all https now, so is it possible to hijack the account (it's a test account, not someones personal mail) with the cookie in the pcap file?

Apols if this is a really dumb question, I'm a total noob.

Cheers, HT.
Burpsuite can do that.
I suggest you read this:
https://evilzone.org/high-quality-tutorials/session-hijacking-evilzone/
(shameless self promotion :P)
: Re: can I hijack webmail session from info in a pcap file?
: hightower December 21, 2015, 10:52:09 PM: : f13rc3bru73 December 19, 2015, 04:30:21 PM
Why you haven't tried it yet? Just modify your browser cookies with any addon

Just trying to really understand what's happening before I go for it. This might be BS (hey, I'm a n00b :)) but I don't want to messup the session before I'm good enough to use it.

: proxx December 19, 2015, 06:35:07 PM
Burpsuite can do that.
I suggest you read this:
https://evilzone.org/high-quality-tutorials/session-hijacking-evilzone/
(shameless self promotion :P)

Cheers mate, nice tutorial! Reckon I'm getting there.

Looks like the screenshots aren't working on the tutorial at the moment?

Staff note: Don't double post, use the modify button.
: Re: can I hijack webmail session from info in a pcap file?
: proxx December 23, 2015, 04:49:14 PM: : hightower December 21, 2015, 10:52:09 PM
Just trying to really understand what's happening before I go for it. This might be BS (hey, I'm a n00b :)) but I don't want to messup the session before I'm good enough to use it.

Cheers mate, nice tutorial! Reckon I'm getting there.

Looks like the screenshots aren't working on the tutorial at the moment?

Staff note: Don't double post, use the modify button.
Seems links have gone down :(
Ill try to find if I still have anything around to fix it, apart from that most of it in the text anyway.