Jan 15, 2011

FireSheep vs BlackSheep (Firefox Extensions)

Here I write about this extensions which can be used in Firefox. Lets get to know basics, What happens when you use some Wi-Fi in any coffee shops or any untrusted networks or When you hack someones network and use it secretly.


When using any browser not only Firefox, when ever you try to log in you will submit your user-name and password then the server checks to see if an account matching this information exists and if so, replies back to you with a "cookie" which is used by your browser for all subsequent requests. In general Firefox will encrypt your username and password which was overcome by this FireSheep extension. So now when your using some network and he's having this firesheep extension then your password will be in wrong hands :-(. It nearly sniffs more than 20 websites source, As this is a open source software hackers can add more websites to their sniffing list.


This FireSheep was developed by Eric Butler a freelance web application and software developer. I'm not interest to speak technically as there are many websites which gives much information about it, so click here  to learn more about this.


Lets go ahead, There is an other extension called BlackSheep this is also a firefox extension which will block this FireSheep trying to get your password cookie. This extension was designed to protect users against a recent browser hijacking tool that allows just about anyone to potentially hijack your web browser session.
BlackSheep combats Firesheep by monitoring traffic and then alerting users if Firesheep is being used on the network. It does this by dropping ‘fake’ session ID information on the wire and then monitors traffic to see if it has been hijacked. So now we are able to overcome those using FireSheep ;-)

                           


Before installing these extensions you need to install WinCap to use these both extensions.


INSTALL WINCAP
INSTALL FIRESHEEP
INSTALL BLACKSHEEP


SUMMARY:
1. Firesheep. A Firefox extension that demonstrates HTTP session hijacking attacks
2. BlackSheep. Helps Identify FireSheep Session Hijacking.
3. These both extensions cannot be on one firefox browser. 
4. This is just for a educational purpose. Don't misuse it, if you then someone will catch hold of you. Someone out there will ever start breaching your security ;-)
5. Which to use BlackSheep ?
                 Use BlackSheep if you use networks which are untrusted out side your security system to be safe. 
6. When to use FireSheep ?
                  Use it when you feel someone is using your network without having your permission such as hacking your Wi-Fi then have this to ensure them not to use your network.


 Follow us on facebook and twitter @demonstech. Any problems regarding PC or any Gadgets Write here @DEMON'STECH,
Its our pleasure to reply.

Related Posts Plugin for WordPress, Blogger...