Description: this video is a simple demo of session hijacking.in this process first an authentication session ID is generated. this causes an attacker to seize control of a legitimate user's Web application and the session is still going on. attacker may use captured, brute forced or reverse-engineered session IDs.sometimes it is also called a session key—to gain access to information or services in a computer.
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
Cross-site scripting xss is one of the technique for session hijacking, where the attacker tricks the user's computer into running code which is treated as trustworthy.
Very informational and easy to understand !!! ~
If you just put that script on a webpage, you will get all the victims cookies or just the last one?