Tuesday, March 13, 2012

Cookie Logger :- Hack Any Account Using Cookies. (Updated).

COOKIES :- 

Cookies stores all the necessary Information about one’s account , using this information you can hack anybody’s account and change his password.

If you get the Cookies of the Victim you can Hack any account the Victim is Logged into i.e. you can hack Google, Yahoo, Orkut, Facebook, Flickr etc.

What is a Cookie-logger?

A Cookie-logger is a Script that is Used to Steal anybody’s Cookies and stores it into a Log File from where you can read the Cookies of the Victim.



Today I am going to show
  How to make your own Cookie Logger…

Hope you will enjoy Reading it …



Step 1:

Download the notepad file from the link below.
  
Click Here To Download   
       
           Or 

here 

Now open the Downloaded Notepad file and change "http://hackerslifebygaurav.blogspot.com" to your site.

Now save it as fun.gif



Step 2: 
  
Download the Cookielogger.php Script File from the link below




               Or
here

Step 3:
   
Create a new Notepad File and Save it as logfile.txt 



Step 4:   

Now Upload all the three files to Your server 
(i.e Your PHP Hosting Website ).

cookielogger.php -> http://www.yoursite.com/cookielogger.php
 
logfile.txt -> http://www.yoursite.com/logfile.txt

fun.gif -> http://www.yoursite.com/fun.gif 


If you don’t have any Website then you can use the following Website to get a Free Website which has php support : 
 


Step 5:  

Okk Now Your Cookie Stealing Website is ready.
Now Go to the victim forum and insert this code in the signature or a post :


[url=http://www.yoursite.com/fun.gif][img]http://yoursite.com/fun.jpg[/img][/url]
 

 





Step 6:

When the victim see the post he view the image u uploaded but when he click the image he has a Temporary Error and you will get his cookie in logfile.txt .

The Cookie would Look as Follows


phpbb2mysql_data=a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%22%3Bi%3A-1%3B%7D; phpbb2mysql_sid=3ed7bdcb4e9e41737ed6eb41c43a4ec9


Step 7:

To get the access to the Victim’s Account you need to replace your cookies with the Victim’s Cookie. You can use a Cookie Editor for this. The string before “=” is the name of the cookie and the string after “=” is its value. 

So Change the values of the cookies in the cookie Editor.




Step 8:

Now for this you will need a firefox addon named 

 "Add N Edit Cookies"



Step 9:   

Thats all done now go to the website or account you have just hacked ( i mean you have steal cookies)  and You will find that you are logged in as the Victim and now you can change the victim’s account information.



Step 10:

GAME OVER

Note : 

Make Sure that Victim should be Online because you are actually Hijacking the Victim’s Session ( Also known as Session Highjacking) So if the Victim clicks on Logout you will also Logout automatically but once you have changed the password then you can again login with the new password and the victim would not be able to login.

Disclaimer: 


I don’t take Responsibility for what you do with this script, served for Educational purpose only.

 


That's all Done.............Happy Hacking....................... 





1 comment:

rock said...

its nt working bro