HOw to hack facebook account using cookies

Today, I am going to inform you the method to hack a Facebook account using Cookie Stealing. If you have not yet gone through my previous Cookie stealing articles, please read them before you proceed further in this article on how to hack a Facebook account.

Facebook usually authenticates its user using cookies. So, whenever user logs in to his account, Facebook server sends asession cookie to user browser and this cookie is used by server to authenticate the user. So, if you are possessing the victim account’s cookie, Facebook will grant you the access to victim account.

Facebook Authentication Cookies

The cookie which facebook uses to authenticate it's users is called "Datr", If an attacker can get hold of your authentication cookies, All he needs to do is to inject those cookies in his browser and he will gain access to your account. This is how a facebook authentication cookie looks like:

Cookie: datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;

How To Steal Facebook Session Cookies And Hijack An Account? 

An attacker can use variety of methods in order to steal your facebook authentication cookies depending upon the network he is on, If an attacker is on a hub based network he would just sniff traffic with any packet sniffer and gain access to victims account.

If an attacker is on a Switch based network he would use an ARP Poisoning request to capture authentication cookies, If an attacker is on a wireless network he just needs to use a simple tool called firesheep in order to capture authentication cookie and gain access to victims account.

In the example below I will be explaining how an attacker can capture your authentication cookies and hack your facebook account with wireshark.

Step 1 - First of all download wireshark from the official website and install it.

Step 2 - Next open up wireshark click on analyze and then click on interfaces.

Step 3 - Next choose the appropriate interface and click on start.




Step 4 - Continue sniffing for around 10 minutes.

Step 5 - After 10minutes stop the packet sniffing by going to the capture menu and clicking on Stop.

Step 6 - Next set the filter to http.cookie contains “datr” at top left, This filter will search for all the http cookies with the name datr, And datr as we know is the name of the facebook authentication cookie.

Step 7 -  Next right click on it and goto Copy - Bytes - Printable Text only.

Step 8 - Next you’ll want to open up firefox. You’ll need both Greasemonkey and thecookieinjector script. Now open up Facebook.com and make sure that you are not logged in.

Step 9- Press Alt C to bring up the cookie injector, Simply paste in the cookie value into it.

Step 10 - Now refresh your page and viola you are logged in to the victims facebook account.

Note: This Attack will only work if victim is on a http:// connection and even on https:// if end to end encryption is not enabled.


Countermeasures

The best way to protect yourself against a session hijacking attack is to use https:// connection each and every time you login to your Facebook, Gmail, Hotmail or any other email account. As your cookies would be encrypted so even if an attacker manages to capture your session cookies he won't be able to do any thing with your cookies. 

Read More

Update FB Status via Any Device without Having It

New ! Interesting thing which i am going to described you in my new Post .. How to Update FB Status Via Any Device - Prank yours friends. Ever wished to pranks your friend using Facebook ? here is a really interesting and funny way. You update your Facebook status via Any device without having it and your friends will think you have got a new gadget. Such as displaying "via Blackberry, via iPhone etc" under your Facebook status. Whenever you will update your status, Facebook detects your device and show it under your status. I have a got a trick you can fool Facebook and your Friends by showing any device name.

See this Example  :

via O2 XDA Atom Life

via PlayStation 3

via Facebook for Camera EOS 50D

via Mafia Wars Game

via Selective Tweets

via Snaptu

via Prod s60 3.2

via HTC Sense

via My INQ Mobile

via Tasha's iMac i7

via A Potato

via UPS

via Typewriter

via StrawBerry

via Pony Express

via MySpace

via Nasa Satellite

via Refrigerator

via Your Mom's Computer

via Toilet

via The Moon

via My Bedroom

via Eye Phone

via Fedex

via Friendster

via Accident

via Magic

via Hell

via Heaven

via chat on facebook

via Facebook

via Black Hole

via Pizza Hut

                                    
App Made By Ankit Jain Copyright © 2011
if u have any problem here vist my

Comment here if u want to more 

Read More

Facebook Hacking Tips By Ankit jain (100% Tested )

Hello Frnds today M post new Trick Many People Ask Me to How To HAck Anyone Facebook Account ...

So Enjoy This Trick 

1) Make 3 facebook fake accounts and send request to victims( Target Id , when your victim accepts the request of those accounts, then you should be able to follow below steps.

2) Once you will get the email put it in the login box.

3) Now click on  Forgot password .

4) Fb Ask  Identify Your Id ( fill any box  one out of 3 box) And Click Search 

5) Click on No longer Access this Account option 

6) Now they will ask you to enter New  email, just enter a new one. ( MAke NewGmail account And Put 

7) Now the main screen would display, they will ask Security Questions, Make random guesses and they will redirects to main page of recovery. If you know the answers don't write them.

8) Now they will ask you to choose the best recovery option.

 

8) Hit continue, and choose three trusted friends option. And choose three friends, make sure 3 fake accounts should  added to your Fake ids.

 

9) When You will choose those fake id's, facebook will send a security code to them, goto those accounts and receive the code and change the password.

 

10) Thats it Account it Successfully hacked you can hack Any1 fb Account using this trick 

-:Note :-

1. Terms of Use:

From this disclaimer you (reader, visitor, anybody concern) must agree that, you are reading this blog on your own will and you are taking information on this blog at your own risk. http://www.ankitjain.co.in/ (Site, author or administrator) will not be responsible for any consequences occurred thereby. You can not sell the content of this website to anyone. All information is only for personal use.

ll the information provided on this blog is for entertainment and education purpose only. This blog does not provide any kind of advice to you. You are reading and/or using this information at your own risk.http://www.ankitjain.co.in/ , (Site, author or administrator) will not be responsible for any consequences occurred thereby.

Tips to help prevent your Facebook   from being Hacked By This Trick !

Log into your Facebook account > Choose “Account Settings” from the “Account” menu> Select “Account Security” and select “change”> Ensure there is a tick next to the “Browse Facebook on a secure connection (https) whenever possible” option > Click “Save”.

I would also recommend that while enabling Secure browsing you select “Send me an Email” under “When a new computer or mobile logs into this account”. This means that whenever someone logs into your account from an unknown access point, you will be sent an email.

Read More