Hot Downloads

Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1
  • 2

TOPIC: Random Cookie and Hacking

Random Cookie and Hacking 10 years 9 months ago #13112

  • cyberoidx
  • cyberoidx's Avatar
  • Offline
  • Frequent Member
  • Posts: 49
  • Karma: 0
I found out that typing a website name (like hotmail) into a P2P generates a lot of cookies that could b used / exploited because stupid people share their entire drives.

Is there any way to expolit these? Like use Hotmail / Yahoo Cookies to gain Unauthorised Acess?
Surya Sharma
www.Technodrome.info
AR3 Y0U T3CH ENOUGH FOR IT?
The administrator has disabled public write access.

Re: Random Cookie and Hacking 10 years 9 months ago #13187

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
It is possible. The details depend on what information the script that generated the cookie stored in it. Commonly it could be user/password of an account in plain text, encrypted in some way, or the session id that would match the user's resource-set on the server. Session ids would be a bit harder to exploit mainly because of their limited validity duration. For more information about sessions, have a look here.

I think that's enough for someone to watch out with his cookies.

One notice however, the fact that some people show ignorance or neglect in this recard, does not mean they are "stupid".. they just might have more important things to do -not *everything* is about computers-. That certainly doesn't give others the right to mess with their personal stuff.
The administrator has disabled public write access.

Re: Random Cookie and Hacking 10 years 9 months ago #13202

<= IИse©u®ity Is A ®esult Of T®ying To Be Se©u®e =>
The administrator has disabled public write access.

Re: Random Cookie and Hacking 10 years 9 months ago #13203

  • cyberoidx
  • cyberoidx's Avatar
  • Offline
  • Frequent Member
  • Posts: 49
  • Karma: 0
Thx for the links


@nske I yet consider sharing your entire hard drive on p2p stupid
Surya Sharma
www.Technodrome.info
AR3 Y0U T3CH ENOUGH FOR IT?
The administrator has disabled public write access.

Re: Random Cookie and Hacking 10 years 9 months ago #13209

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
And someone else could consider digging through other people's personal stuff more stupid. It depends on what criteria you use to make your measurements.
The administrator has disabled public write access.

Re: Random Cookie and Hacking 10 years 9 months ago #13215

  • cyberoidx
  • cyberoidx's Avatar
  • Offline
  • Frequent Member
  • Posts: 49
  • Karma: 0
nice one

but then, cookies contain logins to stuff like bank / online shoppng websites .. thats not personal.. and then in case its needed, people could retrieve data without your permission.
Surya Sharma
www.Technodrome.info
AR3 Y0U T3CH ENOUGH FOR IT?
The administrator has disabled public write access.
  • Page:
  • 1
  • 2
Time to create page: 0.082 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup