Session Hijacking

Session Hijacking is when an attacker gets access to Session Hijacking is when an attacker gets access to the session state of a particular user. The attacker steals a valid session ID which is used to get into the system and snoop the data.

TCP session hijacking is when a hacker takes over a TCP session between two machines. Since most authentication only occurs at the start of a TCP session, this allows the hacker to gain access to a machine.

Types of Session Hijacking

There are two types of session hijacking attacks:

Active: In an active attack, an attacker finds an active session and takes over

Passive: With passive attack, an attacker hijacks a session, but sits back, and watches and records all the traffic that is being sent forth.

Steps in Session Hijacking

Place yourself between the victim and the target (you must be able to sniff the network)
Monitor the flow of packets
Predict the sequence number
Kill the connection to the victim’s machine
Take over the session
Start injecting packets to the target server.

Tools	Description
Juggernaut	Juggernaut is a network sniffer that can be used to hijack TCP sessions. It runs on Linux operating systems
Hunt	Hunt is a program that can be used to listen, intercept, and hijack active sessions on a network
IP Watcher	IP watcher is a commercial session hijacking tool that allows you to monitor connections and has active facilities for taking over a session
Paros HTTP Hijacker	Paros is a man-in-the-middle proxy and application vulnerability scanner
T-Sight	T-Sight is a session hijacking tool for Windows

Raj Chandel

Raj Chandel is a Skilled and Passionate IT Professional especially in IT-Hacking Industry. At present other than his name he can also be called as An Ethical Hacker, A Cyber Security Expert, A Penetration Tester. With years of quality Experience in IT and software industry.His interests are mainly in system exploitation and vulnerability research. Contact me: [email protected]

Follow Me:

Google+

This entry was posted by Raj Chandel on June 20, 2011 at 11:51 am, and is filed under Others. Follow any responses to this post through RSS 2.0.You can leave a response or trackback from your own site.

Comments (0)
Related Posts
About Raj Chandel

Type your comment

You may use these HTML tags: <a> <abbr> <acronym> <b> <blockquote> <cite> <code> <del> <em> <i> <q> <strike> <strong>

Notify me of follow-up comments by email.
Notify me of new posts by email.
Comment Feed for this Post