For those of you who don't know what Firesheep is

http://techcrunch.com/2010/10/24/firesheep-in-wolves-clothing-app-lets-you-hack-into-twitter-facebook-accounts-easily/?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Techcrunch+%28TechCrunch%29&utm_content=My+Yahoo

Developer Eric Butler has exposed the soft underbelly of the web with his new Firefox extension, Firesheep, which will let you essentially eavesdrop on any open Wi-Fi network and capture users’ cookies.

As Butler explains in his post, “As soon as anyone on the network visits an insecure website known to Firesheep, their name and photo will be displayed” in the window. All you have to do is double click on their name and open sesame, you will be able to log into that user’s site with their credentials.

Wow this would be perfect with the N900

It's an Firefox extension so did anyone try to simply install it on Fennec?

This is the reason I use SSH tunnel + Fennec on any wifi network I'm not 100% happy with (which is all of them except at home). Or just use 3G. Would be interested to see if it installs/works, will try it shortly.

let us know how it goes!

http://github.com/codebutler/firesheep

there's the source. looks like there's some compiled bits and it is going to require libpcap it looks like

new laptop last month so my dev environment is down or I'd be building.

Seems interesting, how hard would it be to compile this plug-in for MicroB?

Wireshark + some scripting should do this too, no? Or is the issue to force the cookie into the browser thru scripting, perhaps?

/Z

I never knew it'd be that complicated. I really wanna do this ****!

http://imgur.com/fn1dD.png

I had to try.

so we know it doesnt work for microb. Well I downloaded fennec but I cant seem to find the firesheep extension even searching within firefox's add on data base and through Google. Google just gives a bunch of news reports about it. anyone find a link to it yet?

I don't think its a microb issue, but an architecture issue: Arm, as opposed to x86. *Shrug* Wouldn't know, honestly. While I am not a fan of using stuff like this, having it on an N900 for demonstration-of-how-insecure-the-internet-is would be great.

i've also tried installing it on my n900, through fennec. but when i tried installing it the microB browser started and gave me that error. so i don't know i it's possible to install it through firefox fennec?

...and how the **** is that gonna work, put your wifi into monitor mode magically? right...

its possible to put your N900 in monitor mode...just no packet injection

Though, keep in mind - with power kernel. If you're not running power kernel, you don't have monitor mode.

Does it even run under regular Firefox on Linux? I had the impression it didn't.

Meh. Yeah it looks like a Linux port is still in the works (which is funny because lipcap is a Linux library). This extension isn't pure JS like many other extensions. It should also be noted that this is far from useful due to it's many limitations.

For those interested in the "real deal":
Ferret+Hamster+sslstrip+arpspoof.
http://hamster.erratasec.com/ the compile options are, well pretty strange, read the README. I've compiled it for the N810 in the past, shouldn't be any issues there. However to actually utilize this tool you need a patched version of arpspoof compiled (dsniff package). This is the major roadblock I had, IIRC the issue stems from not being able to override libnet2 with libnet1 in scratchbox (plus you need to change the hardcoded eth0 to wifi0 or use the patched code that is floating around somewhere, I'll have to look, it's hard to google for it). Then you need to get ssltrip working which requires some extra Python components which I simply couldn't find.
When it works, it WORKS. When it doesn't, it knocks out my router, heh.
gmail was completely vulnerable last time I checked and Facebook works if you have checked the box to stay signed in (uses a cookie).

Basically how this works is you tell the router that you are the IP of the victim and you end up stealing their cookies. However at no time does the attacker have access to the actual password. When the victim signs out, this nullifies the cookie and signs the attacker out too. This is one of the better pen-testing exercises IMO (if you can get it working properly; I may have forgotten to mention that this doesn't work on a WPA2 network).

Does it even run under regular Firefox on Linux? I had the impression it didn't.

Nearly. There's a pull (merge) request for Linux support on the GitHub page (http://github.com/codebutler/firesheep/pull/31). Once that's fixed, it should be possible to compile it for ARM (as long as all the dependencies are met).

Mobile Firefox has a very different UI to standard Firefox, so I guess a successfully compiled XPI would need some changes. It'd be easier to get it working for Iceweasel in Easy Debian.

What I'd do instead (if I had the time) is write a GUI program that filters Wireshark captures for the HTTP logins and extracts the cookies. You could then have a simple local HTML/JS file that's the GUI links to that sets the cookie in MicroB.

This is all very interesting to me and I'm loving the posts! What would make the N900 perfect if i were able to install Backtrack 3 (or 4 now) and dual boot it. If packet injection was available, this phone would be a mobile hacking machine in your pocket!

So far on my PC i was only able to crack my WEP (very easy) and WPA codes. Doin this with the N900 would be perfection! I wonder what other little qwerks you can do with the N900 i dont know about. Anyone care to inform me? I remember on the old Nokia phones you were able to access other peoples phones via bluetooth, but permissions today make it difficult.

could this be of any help?
http://randommusingsofarealgeek.blogspot.com/2010/11/firesheep-on-linux.html

or this?
https://github.com/codebutler/firesheep/issues#issue/70

This whole thread reeks of script kiddy. You can pull all of this off with scapy which is in the repos. If you're going to put so much effort into porting this one tool you may as well learn a good chunk of scapy and utilise it far more effectively.

This whole thread reeks of script kiddy. You can pull all of this off with scapy which is in the repos. If you're going to put so much effort into porting this one tool you may as well learn a good chunk of scapy and utilise it far more effectively.

What the hell is scapy? can't find it in the repos

What the hell is scapy? can't find it in the repos

It might be in extras or testing, can't check right now sorry.

It's an amazing tool, I've used it for so much. It lets you build your own packets *exactly* how you like them. So for this you'd need to build a malicious ARP packet and sniff the connections. I can't tell you how good it is until you use it. You just need to know some python (mostly for scripting your stuff, if you're using the interpreter it isn't a lot like python) and a good knowledge about networking.

If something is easier to use than why label me a script kiddy? I can fully utilise BT3 but its not something I can install on my N900. Why put yourself through so much work when a simple one two process can get the job done?

This is all very interesting to me and I'm loving the posts! What would make the N900 perfect if i were able to install Backtrack 3 (or 4 now) and dual boot it. If packet injection was available, this phone would be a mobile hacking machine in your pocket!

So far on my PC i was only able to crack my WEP (very easy) and WPA codes. Doin this with the N900 would be perfection! I wonder what other little qwerks you can do with the N900 i dont know about. Anyone care to inform me? I remember on the old Nokia phones you were able to access other peoples phones via bluetooth, but permissions today make it difficult.

Look into the neopwn project (there are a couple of threads in the forum about it)

If something is easier to use than why label me a script kiddy? I can fully utilise BT3 but its not something I can install on my N900. Why put yourself through so much work when a simple one two process can get the job done?

Don't even get me started on Backtrack. What job? I highly doubt as a pen tester anyone is ever going to commend you for using something such as firesheep. You could write the script on your computer and scp it onto your phone. You've then got the advantages of implementing other features, cookie grabbing failed? You could easily implement SSLstrip into the script.

We're fighting an uphill battle, Captwheeto. These guys do not want to learn how tools works, they simply want to use them for malicious purposes and puff up their chests to their 9-5 friends.

I wanna learn how they work AND fool around in the gray areas of morality

I wanna learn how they work AND fool around in the gray areas of morality

likewise... its how i began to like open sourced software, ability to have more useful things, but also learning how they are made, to improve on them.

We're fighting an uphill battle, Captwheeto. These guys do not want to learn how tools works, they simply want to use them for malicious purposes and puff up their chests to their 9-5 friends.

Going from a CS major to a Bio major, I kind of lost interest on how to work the tools and C++. I can, but I'm lazy so I won't. You can assume it's for malicious purposes, but that's just it you're assuming.

this thread is interesting
i have a question,,in https://github.com/codebutler/firesheep
i've downloaded the file but all files are without extension, so how can i download firesheep on my computer ?

i've downloaded the file but all files are without extension, so how can i download firesheep on my computer ?
Normally you start by reading all the files that are in uppercase letters:

COPYING
README
INSTALL
...
etc

Ettercap (http://talk.maemo.org/showthread.php?t=42680) can also do this.

FWIW, a similar package for WebOS has surfaced.

http://omoco.de/firesheep/

Firesheep for linux http://deauththis.com/forum -- goto downloads section under software