EvilZone

Hacking and Security => Hacking and Security => : WirelessDesert February 04, 2013, 03:10:16 PM

: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: WirelessDesert February 04, 2013, 03:10:16 PM

Just did my first hijacking some minutes ago, got into a instagram account and changed the poor guy's sig. Now that's the only thing I did, so now I've got some questions.

Can my phone,  which I used to do this with dSploit, be traced via my Mac adress (I forgot to spoof it,  does it change between sessions?). Btw. I'm not connected to the network right now.
What to do with the vbs files I've stored, how to use them.
How to install make a vbs file go into for example Kik, because I retrieved a Kik cookie.
That's all, sorry if I am stressed, adrenaline is awesome!

Oops, with vbs I meant .dhs

: Re: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: proxx February 04, 2013, 04:03:48 PM

The MAC adress is static however can be spoofed indeed.
Its not very clear to me what exactly you did ?
Im assuming we are talking local network.

In that case its all about logs, bigger networks and corps might keep logs.
On the local machine you messed with might be traces.
However one must be looking for really specific things.

One think to note is that if someone wanted to find you and has the money and time he would.
The MAC adress can be traced down to the person, if thats what you wanted to know.
That is if you bought it with anything traceable (anything non cash)

Dont worry too much , just dont be an idiot next time.
Let me state the obvious; first understand than try.

: Re: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: WirelessDesert February 04, 2013, 04:09:00 PM

I decided to try to do a mitm attacks while I was waiting for a bus, I forgot to spoof the mac address. I did this on a public wifi at the station.

Now, anyone got any ideas on how to use the dhs on Kik?

And thx proxx!

: Re: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: proxx February 04, 2013, 04:22:03 PM

For the sake of completeness.
I forgot to mention that at least the hosting party(website) didnt log your MAC as they can only see the public MAC, which is that of the router/switch of the party owning the wireless network.
So basically only the 'client' and the wireless provider could potentially have any data.
'

: Re: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: WirelessDesert February 05, 2013, 02:20:03 PM

I'm going to have another try today, with mac spoofing this time. Wish me luck!

: Re: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: Axon February 05, 2013, 11:15:21 PM

You sir just discovered the orgasm of hacking.

: Re: Holy shit!! Adrenaline is awesome! So is hijacking sessions!
: p@nd@ February 07, 2013, 02:07:52 AM

I remember my first time as well. Though I just checked out Dsploit since I have used Anti before and didnt hear about that one its pretty nifty. :)