Author Topic: can I hijack webmail session from info in a pcap file?  (Read 2399 times)

0 Members and 1 Guest are viewing this topic.

Offline hightower

  • NULL
  • Posts: 3
  • Cookies: -2
    • View Profile
can I hijack webmail session from info in a pcap file?
« on: December 19, 2015, 03:59:24 pm »
Hey all, I'm working on a challenge to extract as much info from a pcap file as possible.

The file definitely shows the user was in yahoo mail and I think that's the target.

Yahoo is all https now, so is it possible to hijack the account (it's a test account, not someones personal mail) with the cookie in the pcap file?

Apols if this is a really dumb question, I'm a total noob.

Cheers, HT.

Offline f13rc3bru73

  • Serf
  • *
  • Posts: 21
  • Cookies: 9
    • View Profile
Re: can I hijack webmail session from info in a pcap file?
« Reply #1 on: December 19, 2015, 04:30:21 pm »
Why you haven't tried it yet? Just modify your browser cookies with any addon

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: can I hijack webmail session from info in a pcap file?
« Reply #2 on: December 19, 2015, 06:35:07 pm »
Hey all, I'm working on a challenge to extract as much info from a pcap file as possible.

The file definitely shows the user was in yahoo mail and I think that's the target.

Yahoo is all https now, so is it possible to hijack the account (it's a test account, not someones personal mail) with the cookie in the pcap file?

Apols if this is a really dumb question, I'm a total noob.

Cheers, HT.
Burpsuite can do that.
I suggest you read this:
https://evilzone.org/high-quality-tutorials/session-hijacking-evilzone/
(shameless self promotion :P)
« Last Edit: December 19, 2015, 06:35:30 pm by proxx »
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage

Offline hightower

  • NULL
  • Posts: 3
  • Cookies: -2
    • View Profile
Re: can I hijack webmail session from info in a pcap file?
« Reply #3 on: December 21, 2015, 10:52:09 pm »
Why you haven't tried it yet? Just modify your browser cookies with any addon

Just trying to really understand what's happening before I go for it. This might be BS (hey, I'm a n00b :)) but I don't want to messup the session before I'm good enough to use it.

Burpsuite can do that.
I suggest you read this:
https://evilzone.org/high-quality-tutorials/session-hijacking-evilzone/
(shameless self promotion :P)

Cheers mate, nice tutorial! Reckon I'm getting there.

Looks like the screenshots aren't working on the tutorial at the moment?

Staff note: Don't double post, use the modify button.
« Last Edit: December 22, 2015, 04:47:38 am by techb »

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: can I hijack webmail session from info in a pcap file?
« Reply #4 on: December 23, 2015, 04:49:14 pm »
Just trying to really understand what's happening before I go for it. This might be BS (hey, I'm a n00b :)) but I don't want to messup the session before I'm good enough to use it.

Cheers mate, nice tutorial! Reckon I'm getting there.

Looks like the screenshots aren't working on the tutorial at the moment?

Staff note: Don't double post, use the modify button.
Seems links have gone down :(
Ill try to find if I still have anything around to fix it, apart from that most of it in the text anyway.
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage