Session Hijacking
Download as PPTX, PDF4 likes5,600 views
Session hijacking involves an attacker stealing a valid user session ID to gain access to a system and retrieve data. There are several types of session hijacking such as predictable session tokens, session sniffing, and man-in-the-middle attacks. To perform session hijacking, an attacker places themselves between the victim and target server, monitors packet flows, and predicts sequence numbers to take over the user's session and inject packets to the target server. Mitigations include using HTTPS, a VPN, limiting exposure to untrusted networks, and educating employees. Tools that can be used for session hijacking include Firesheep and other programs.
Session Hijacking
- 1. SESSION HIJACKINGBY Vishal Punjabi
- 2. TOPICS TCP Concepts-The 3 Way handshakeSession hijackingTypesMethodMitigationsToolsFiresheep
- 4. What is Session Hijacking ?Session hijacking is when an attacker gets access to the session state of a legitimate user.The attacker steals a valid session ID which is used to get into the system and retrieve the data
- 8. This is Spoofing not Hijacking
- 10. Types Of Session HijackingPredictable session tokenSession sniffingClient side attacks (XSS, malicious JS codes, trojans etc) Blind HijackMan-in-the-middle (MITM)
- 11. Method (steps)Place yourself between the victim and the target (you must be able to sniff the network)Monitor the flow of packetsPredict the sequence numberOptionally kill the connection to the victim’s machineTake over the sessionStart injecting packets to the target server
- 12. MitigationsUse a secure HTTPS protocolUse a VPN when connecting remotelyProtect access to your own networksLimit exposure to untrusted networksEducate the employees
- 13. ToolsJuggernautHuntTTY WatcherIP WatcherT-SightParros HTTP HijackerDroidSheep for AndroidFiresheep (Firefox addon)
- 14. FiresheepFiresheep is a free, open source, and is now available for Mac OS X and Windows.Linux support is on the way. Find it here-https://github.com/codebutler/firesheep/downloads