You are on page 1of 18

Aayanext Company

Facebook Hacking & Tricks
Book Version 1.0
Aayan Saleem

2012

Aayanext Company

next this trick will work only on LAN with hub. Here surely I 'll not discus how to use wireshark please read our previous tutorials to know how to use wireshark.com to get its IP address.facebook.In this tutorial we will have out look on how you can hack facebook account using wireshark. filter all IP packets having IP address of www. So now click on capture button and start capturing packets. It will also work on LAN with switch but you'll have to perform ARP poisoning. click on link to know more. Now using command line shell ping www. For this hack you'll need wireshark which is a packet sniffing tool. Now I assume you have all above components for hacking facebook and you are connected in a hub based LAN or LAN which has been ARP poisoned. Mozilla Firefox web browser and add n edit add-on for Mozilla Firefox.com and search for HTTP protocol followed . First of all I must clear you even though you'll get access to victim's account you'll not get his/her password.facebook.

. this may vary depending on region and time/zone but don't bother try to search all packets with HTTP GET for cookies. Right click and copy all cookies names and values in notepad. Add each cookie to your cookie folder using Cookie editor. Now from packet details window expand the packet information for above packet and you'll get 8-10 different cookies that are stored by www.php. Now open Mozilla Firefox browse to tools and open Cookie editor. your cookie editor will show you following values in cookie list for facebook.byGET /home.facebook.com on victim's PC. After adding each value.

org/. Wireshark can be used for troubleshooting network problems. Don't log-in into your accounts if you know your LAN is not protected and if you want to log-in better use a tunneled connection. Defense against this attack: A system administrator should use tools used for countering sniffing.Now close Cookie editor and open Facebook. debug protocol implementations and learn internals of protocol. So your first question might be what is wireshark? And the answer is wireshark is network packet analyzer according to its documentation which can be used to capture network packets and try to display that packet's data as detailed as possible . you'll find yourself logged into the victims account. By the way . examine security problems. Download Wireshark from http://www.wireshark. Download Add N Edit Cookies from Add-Ons Mozzila  Installation So this following post is about installing Wireshark.

Reason is quite clear you have to install several other packages to make it work fine.gtk. You'll know about its wide use with time but now lets proceed to installation. You can download both fromhttp://www. The real problem comes while installing it on UNIX and Linux boxes.org/. flaws in implementations of protocol that can lead to breach in security. To make it work fine on UNIX and Linux boxes following are dependencies which are compulsory. sensitive information.tcpdump. According to hackers wireshark is packet sniffing tool which is modified version of Ethrealpacket sniffer that can be used to steal sensitive information flowing trough network. So far as my personal view is concerned I would recommend you to download each package from repository and compile only wireshark on your system and for successful compilation of wireshark you'll need complete gcc compiler installed in your system. GTK and for installing GTK you'll need glib package. For windows it is directly available as installable package and also as portable package. Linux and UNIX systems. For Reh Hat Linux. Fedora. CentOS. . for some reason even after installing libacap it will not work in such case you have to install tcpdumpafter libacap. Wireshark is available for wide range of platforms including nearly all versions of Windows. Gentoo and their variants. It can not only capture packets but can also reassemble them and reveal passwords.above things are crap for a hacker who will be using wireshark because he will be using wireshark for stealing sensitive information.org/. and their variants type following commands. capture files transfer over network etc. Next you'll need libacap which can be downloaded from http://www. [root@localhost ~]# yum install gtk [root@localhost ~]# yum install libacap [root@localhost ~]# yum install tcpdump For Debian.

thanks for reading and keep visiting. Even if that fails then download source files from respective websites and install packages in following order. Glib gtk libacap tcpdump Wireshark. z-modems. stealing passwords and transferred files. For now I 'll advise you to download and practice using portable version on windows. # . Fedora. Now next big thing. to solve that problem install an OS in VMWare or Oracle VirtualBox and then monitor their traffic. In future posts we will have our look on how to use Wiresharkfor packet capturing. Now from above discussion you might have got clear. dongles and 140i series modems. . analyzing traffic. Download compatible packages and install using rpm -ivh package_name on Reh Hat Linux. By the way since they are not used for making LANs you will hardly need them but I am giving it as an precaution since most of you might practice wireshark on your own system first and if you have any of above modem then you'll not be able to practice./configue # make # make installable Please note that Glib will take ample time for installation. Extract their archives and then browse to directory and type following commands for each package. Gentoo and their variants. Since then have a nice time. and their variants and dpkg -i package_name on Debian. If above things doesn't fetch you installations.[root@localhost ~]# sudo apt-get install gtk [root@localhost ~]# sudo apt-get install libacap [root@localhost ~]# sudo apt-get install tcpdump Though I have provided above commands I don't guarantee they will really fetch you packages since installation via repository depends on availability of package. CentOS. it can be difficult sometimes to install wireshark on Linux. wireshark for now does not support external modems like data cards.

The second button will open capture options. same options will open if you would have clicked details button in interface list. . In this following tutorial we will learn how to capture packets usingwireshark. To see available interfaces that can be used for capturing click on very first button. The buttons that are useful for capturing packets from network are located on topmost left side of window . You can directly start capturing packets by clicking on start button of any working interface of your choice. Capturing Packets In last tutorial to wireshark we saw how to install wireshark on Linux system.

Next option is packet capture in pcap-ng format. . If you want to sniff remote system then you have to provide remote system's IP address. If you do not use cable TV network for internet connection leave that option to default.Interface: Allows you to select interface you want to use for sniffing. I can hardly say this option will work. When you want to capture all traffic coming from LAN you should keep promiscuous option checked. At present avoid using pcap-ngformat for capturing packets since pcap-ng is in evolution phase and may give out unexpected output. DOCSIS interface is for those who use internet over cable TV connection. Link Layer Header Type: Two types are available first Ethernet that all usually use and another type is DOCSIS. It also allows null session capture but today hardly any OS is susceptible to null session. user-name and password (should be administrative account).

From name resolution enable all name resolution. So here we will discus only those filters which are mostly used.(PCAP-NG Packet Capture for Next Generation its a file dump format) Buffer size is by default set to 1MB and that's good enough for most of the networks if your connection is really very fast that you encounter packet drop while capturing packets then increase its size else don't change default value. Now click on third button to start sniffing open your web browser and open any website for examplewww. You can set filters while capturing packets but we will discus it in next tutorial.google. You can press start sniffing by press start button on bottom of window. ip. In this tutorial we will have our look on how to filter them according to need. You can set option to split capture in multiple file but don't use it unless you have already set any filter.128 is present then you have to type following command in filters.248.168.248. it does have lots of filters which many of us hardly ever use .addr==192.168.128 .  Filters In last tutorial to wireshark we saw how to capture packets using wireshark. As told earlier wireshark is not only a sniffing tool it can also be used for testing protocol implementation and network monitoring. Now as all settings are done we should start our first sniffing session.com and see what is captured in wireshark. Filtering by IP address: Now suppose you want to filter all those packets where IP address 192.

ip. UDP.128 && ip. Filtering by ports and protocols: To filter packets by protocols just type name of protocol in filter box.248.168.248.18 ip.if you also want to filter packets holding IP address 96.dst== 192. but keep in mind all commands in wireshark strictly follow mathematical set theory for filtering so you have to be accurate to filter packets.181. If you want to filter packets where source IP is 96. HTTP.181.src== 96.18 You can use as many && and or. To add port to filter add name of protocol appended by port number.17.181.18. .181. For example TCP. If you want to list packets which holds any one IP address from above then the same filter will be written as follows.168.18 where && means AND. then above command will be modified as.17.168. ip.17.128 then you can specify filters as follows.17.addr==192.addr==192. look at following example.128 or ip.168. ip.181.addr==96.addr==96.248.18 and destination IP is 192. SMTP etc.128 You can use && and or switches equally with any filter.248.17.

168.dst== 192.dst==00:0c:29:0e:15:24 Lastly before you specify new filter you have to clear previous filter.addr=00:0c:29:0e:15:24 eth.128 Filtering by MAC address: You can use following filter to list packets with specified MAC address. eth.ip.248.128 && tcp.port=443 Above filter will list all packets from TCP port 443 for destination 192.248.168. to do s .src==00:0c:29:0e:15:24 etc.

com website then first of all open website on your own browser and view source code. So if above conditions are met then start capturing packets. If the site does not uses embedded java script for log-in then and only then you can capture password in plain text format. Once installed restart your browser. See packet details and you'll get user-name and password. from find window select. If URL of site contains https instead of http then all credentials will be encrypted before transmission and you'll not get any credentials. . Suppose you want to steal password of victim who has account on some http://www. Since the action will be post while sending credentials. For this demonstration you'll need Mozilla Firefox web browser and Add-N-Edit Cookie add-on.abcxyz. Add-N-Edit Cookie Add-N-Edit Cookie Now first of all I 'll clear how you can steal passwords. Now click on Edit and select Find Packets. Find by: String Search in: Packet details and in string section value specified for password box. Stealing Password And Cookie As told earlier sniffers are widely used for stealing passwords and cookies so as a last part to wireshark tutorial I 'll roughly cover how you can do this. After installing Firefox you can download add-on from following links. you can access this add-on from tools menu. select a packet with POST in it.

Copy all details about cookies in it. in such cases find packets with word cookie. select Add New and input all cookie details and you are done. but it also turns it into a link where does the link lead you ask? It leads to the profile page of the person who clicked it. so you can actually troll your friends with this trick. you'll not need any password just log-in by typing website URL. 1) Make a Blue Facebook Status Update:This is one of the coolest Facebook tricks because it not only makes your status update change color.Now if the website uses embedded Java script or https you will not get password. . now open your Mozilla Firefox click on Tools and open Cookie Editor.

You can add more text before or after the code. Step 3: Post the Facebook status :) 2) How to control Facebook Tags:So you went to a party and woke up to the horror of realizing that you got tagged in some horrible pictures? We say no more! It is time to take the power back from our friends and let us decide where we want to be tagged. and what tags we want to be published on our timeline. to make this look even cooler.Step 1: Write the following line in your status update: @@[1:[0:1: write here ]] Step 2: Replace the write here text with any text you wish to become blue. The privacy menu can be accessed by clicking the white arrow pointing down near the home button in the top right area of the screen . To begin we will need to go to the Privacy Settings of our Facebook account. So you must be asking yourself what do I have to do to make it happen? it's simple just follow our easy tutorial below.

but for this Facebook tip we will be customizing the Timeline and Tagging options only.Once you click it you will have to choose the option called Privacy Settings from the dropdown menu Inside the Privacy Settings menu Facebook presents various options to fine tune your profiles settings. a new pop-up screen will open. it will look something like this: . Click on the Edit Settings button for the Timeline and Tagging options  Once you click on the Edit Settings button. showing a list of possible settings.

So no more tags on horrible party pictures or spamm posts. I marked the option we need in Red. we want it enabled.  Now that you have this setting enabled. you control your timeline once again :) . Facebook will ask you to enable or disable this setting. By clicking on this option in the list.  As you can see. each time someone tags you in a picture or a post the tag will be sent for verification before it is posted on your Timeline.

@[0:0: ] .3) How to Update Blank Status on FACEBOOK STEP 1.First of all login to your FACEBOOK account.e @[0:0: ] @[0:0: ] @[0:0: ] ___________________________________________________________________________________ - ..Now type this code in your status bar and click on post STEP 3. Thanks friends to read my this trick and i'll be back with a new awesome trick. STEP 2. your blank status has been updated. Thanks once again NOTE: You can use this code multi time to update long blank status i. You have done. .

the free accounts they offer are also both limited in one way or another. monthly or annually. Hootsuite offers similar functionality to Sendible. every week. The feature that this app has that other status scheduling apps do not is the ability to set recurring status updates every day. every other day. Website:. but it’s nice to have the option.4) Schedule Facebook Status Updates with LaterBro I just discovered a cool service called Later Bro that allows you to schedule status updates any time in the future. not for Facebook Pages. I don’t know why you would want to send the same status every day.com/ ___________________________________________________________________________________ . every other week. Sendible is another tool you can use for scheduling updates for personal profiles and Facebook Pages. Later Bro is for a single personal Twitter or Facebook account. and although both Sendible and Hootsuite work with Facebook Pages.http://laterbro.