Author Topic: can I hijack webmail session from info in a pcap file? (Read 974 times)

hightower · « **on:** December 19, 2015, 03:59:24 pm »

Hey all, I'm working on a challenge to extract as much info from a pcap file as possible.

The file definitely shows the user was in yahoo mail and I think that's the target.

Yahoo is all https now, so is it possible to hijack the account (it's a test account, not someones personal mail) with the cookie in the pcap file?

Apols if this is a really dumb question, I'm a total noob.

Cheers, HT.

f13rc3bru73 · « **Reply #1 on:** December 19, 2015, 04:30:21 pm »

Why you haven't tried it yet? Just modify your browser cookies with any addon

proxx · « **Reply #2 on:** December 19, 2015, 06:35:07 pm »

Quote from: hightower on December 19, 2015, 03:59:24 pm

Hey all, I'm working on a challenge to extract as much info from a pcap file as possible.

The file definitely shows the user was in yahoo mail and I think that's the target.

Yahoo is all https now, so is it possible to hijack the account (it's a test account, not someones personal mail) with the cookie in the pcap file?

Apols if this is a really dumb question, I'm a total noob.

Cheers, HT.

Burpsuite can do that.
I suggest you read this:
https://evilzone.org/high-quality-tutorials/session-hijacking-evilzone/
(shameless self promotion

)

hightower · « **Reply #3 on:** December 21, 2015, 10:52:09 pm »

Quote from: f13rc3bru73 on December 19, 2015, 04:30:21 pm

Why you haven't tried it yet? Just modify your browser cookies with any addon

Just trying to really understand what's happening before I go for it. This might be BS (hey, I'm a n00b

but I don't want to messup the session before I'm good enough to use it.

Quote from: proxx on December 19, 2015, 06:35:07 pm

Burpsuite can do that.
I suggest you read this:
https://evilzone.org/high-quality-tutorials/session-hijacking-evilzone/
(shameless self promotion )

Cheers mate, nice tutorial! Reckon I'm getting there.

Looks like the screenshots aren't working on the tutorial at the moment?

Staff note: Don't double post, use the modify button.

proxx · « **Reply #4 on:** December 23, 2015, 04:49:14 pm »

Quote from: hightower on December 21, 2015, 10:52:09 pm

Just trying to really understand what's happening before I go for it. This might be BS (hey, I'm a n00b but I don't want to messup the session before I'm good enough to use it.

Cheers mate, nice tutorial! Reckon I'm getting there.

Looks like the screenshots aren't working on the tutorial at the moment?

Staff note: Don't double post, use the modify button.

Seems links have gone down

Ill try to find if I still have anything around to fix it, apart from that most of it in the text anyway.

EvilZone

News:

Author Topic: can I hijack webmail session from info in a pcap file? (Read 974 times)

hightower

can I hijack webmail session from info in a pcap file?

f13rc3bru73

Re: can I hijack webmail session from info in a pcap file?

proxx

Re: can I hijack webmail session from info in a pcap file?

hightower

Re: can I hijack webmail session from info in a pcap file?

proxx

Re: can I hijack webmail session from info in a pcap file?