Sidejacking Using Ferret And Hamster 2
|
|
|
||||||||||||
Description:
Sidejacking actually sniff the network traffic and extract the session-id from the HTTP cookies. Many web sites use SSL encryption for login pages to prevent attackers from seeing the password, but do not use encryption for the rest of the site once authenticated. With the session-id, you can gain access to the victim's account without the need of username and password.
A high resolution version of the video is available here. You can visit the author's website here for more info.
A high resolution version of the video is available here. You can visit the author's website here for more info.