Log in Facebook account with cookie stealing or session hijacking...

In this tutorial ill be teaching you how to log in a facebook account with cookie stealing or session hijacking.

The cookie which facebook uses to authenticate it's users is called "Datr", If an attacker can get hold of your authentication cookies, All he needs to do is to inject those cookies in his browser and he will gain access to your account. This is how a facebook authentication cookie looks like:


Cookie: datr=1276721606-b7f94f977295759399293c5b0767618dc02111ede159a827030fc;


How To Steal Facebook Session Cookies And Hijack An Account? 

An attacker can use variety of methods in order to steal your facebook authentication cookies depending upon the network he is on, If an attacker is on a hub based network he would just sniff traffic with any packet sniffer and gain access to victims account.

If an attacker is on a Switch based network he would use an ARP Poisoning request to capture authentication cookies, If an attacker is on a wireless network he just needs to use a simple tool called firesheep in order to capture authentication cookie and gain access to victims account.

In the example below I will be explaining how an attacker can capture your authentication cookies and log in your facebook account with wireshark.

Facebook Trick For Tracing Facebook User Location While Chatting

“If You have  unknown friends in your facebook account and then after some time, you come to know that one of them is a fake person then with the help of this facebook tricks you can trace his IP address and area. I often accept many unkown friend requests, one day i get into a big problem from a unkown friend of mine. He start abusing me .Then i do some research work and i come to know about this facebook trick and with the help of this PC Trick i came to know that the unknown one is my own friend and he just make a fake ID on facebook.

Anyways here’s is the facebook trick of doing it:

First you got to find out the IP address of that User.

To Do so we will be using “netstat” command in windows for this pc trick. If you want to know the IP address of a specific person on facebook or orkut or any chat service, there is only one way: Just invite or ping him for a chat and while chat is ON open ‘Command Prompt‘ on your PC (Start >Run>cmd).

Note: before trying this make sure you close all the other tabs in your browser. and only facebook is open. also if possible delete all the history and cache from your browser.

Now the next step that you have to do for this facebook trick is opens the command prompt  Type the following command and hit Enter.

netstat -an

And you will get all established connections IP addresses there. Note down all the suspicious IP’s

The Next PC Trick is to trace that user using his IP address.

To do this facebook tricks we will be using IP tracer service. For this Go to the following address : http://www.ip-adress.com/ip_tracer/

 and paste the IP address in the box that says “lookup this ip or website”. and it will show you the location of the user.

It will show you all the information about that user along with his ISP and a Location in the MAP. Now in the MAP Just click on “click for big ip address location” in the big picture you can actually zoom in. and try to recognize the area. If any serious matter just note down the ISP details in that page and contact them about the IP. they will respond you. Use this facebook trick if you are in a problem with some unkonown friend. For more facebook tricks and web tricks see my other posts.