Tuesday, June 14, 2011

Surf Jack – Cookie Session Stealing Tool

4:21 AM  expert  No comments

A tool which allows one to hijack HTTP connections to steal cookies – even ones on HTTPS sites! Works on both Wifi (monitor mode) and Ethernet.

Features:

Does Wireless injection when the NIC is in monitor mode
Supports Ethernet
Support for WEP (when the NIC is in monitor mode)

Known issues:

Sometimes the victim is not redirected correctly (particularly seen when targeting Gmail)
Cannot stop the tool via a simple Control^C. This is a problem with the proxy

Requires:

Python 2.4
Scapy

You can download Surf Jack here:

surfjack-0.2b.zip

Posted in: ,

0 comments:

Post a Comment