Start free trial Sign in

From the course: Ethical Hacking: Session Hijacking

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Hijacking an HTTP session through cookies

Hijacking an HTTP session through cookies - Linux Tutorial

From the course: Ethical Hacking: Session Hijacking

Start my 1-month free trial

Hijacking an HTTP session through cookies

“

- [Instructor] In order to hijack an HTTP session, I'll intercept network traffic using my Windows attack system. For this, I've got Wireshark installed and I've set my network interface to allow promiscuous mode. You can do this in VirtualBox by selecting the virtual machine, select the Network Settings, Advanced, and then Allow VMs. Right now, I'm in Windows as the attacker. In order to demonstrate how a session can be hijacked using cookies, I'll have to install an extension called Tampermonkey to my Chrome browser and install the cookie injection script. I'm at the Tampermonkey site and I'll select the stable version. Chrome will ask if I want to add the extension. And I do. Hit Download, it automatically installs. Now I've got Tampermonkey installed, I need to install a cookie injection script. You'll find this in pre-configuration file attached to this course. I've got it loaded as a text file in my Windows system called Cookie Inject.txt. I'll copy this. I'll open the…

Contents