|
[Request] FaceNiff (facebook sniffing/hacking tool)
As most people know, the n900 is an awesome pentesting/hacking tool, I just saw this article on engadget about an Android app called FaceNiff
I was wondering if anyone can help port it to maemo. yes we have sslsptrip, ettercap, metasploit, easy-creds, etc.. but just like Faircrack, having everything with a touch of one button seems so much cooler. firesheep never really worked for me, but maybe this is a lot better. FaceNiff homepage |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
just run it on nitdroid if you're jonesing for someone else's private information
|
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
I used it today and it opens in NitDroid, but it didn't sniff any passwd.
Maybe it's my work wifi network that's causing problems, so I'll test it @ home. |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
I'm always divided between liking that tools are available and thinking that it's pure ******** that they make things so easy.
Of course, indirectly, they force security to improve, but still. Stuff like this, that targets one specific site, is like having a gun that can only fire when it's pointed, at, say, women 65 years old and up. Now, there MIGHT be legitimate use cases for it, but chances are, if you're getting it knowing what it does, you're interested in shooting old women due to some mental issue more so than having a tool for shooting things that might legitimately need to be shot. The same applies here. You might be interested in completely benign uses of the software. But unlike actual versatile tools, the overwhelming majority of users of something like this as going to be kiddies wanting to get some jollies of getting into people's facebook accounts. Not that there can't be good reasons for doing that - sometimes there can be - but that's not what most people will use it for, and everyone knows that. |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
But what could you do to stop it? Tools like this are out there and force us to be aware that nowadays EVERYONE could "hack" the s**t out of you within two clicks. So, this thing is encouraging us to use https, to stop these script kiddies who don't give a **** what a MITM attack is. Everything has it's pro and it's cons. You are pointing out the cons, and I'm pointing out the pro's. But we have the same opinion about this type of programs.- |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
I mean, facebook has implemented SSL a while ago (I think shortly after FireSheep got publicity), but they still don't bother making that the default login page, last I checked. I certainly agree with you, these kind of things are almost necessary, the way society is now, for security to be increased. However, at the same time, society shouldn't have to be this slow at getting better security everywhere, and shouldn't have to depend on malicious exploitation as motivation. It's pretty intrinsic to the nature of both humans and large collectives thereof, of course, so that's not changing any time soon. |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
download their private picture??? spying on their activities??? reading their private message??? or just to show other how genius you are??? This is not pro's at all....have you thinks how do people thinks after their account have been hacked??? or why dont i hacked on your account so you can feel how other feel when they account have been hacked...would you like that???? |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
Ideally, this wouldn't be an issue in the first place, of course. Quote:
Suppose the account being hacked is of some school's local gang member kid / vicious "bully" (hate that word, it sounds WAY too benign), etc., and he and his buddies were discussing jumping some kid and beating him up in the near future, etc. And you happened to overhear of it, and given that this is teenagers we're talking about, they could easily be expected to have facebook accounts, and be stupid enough to discuss such activity over them. Anyway, said hacking could easily get you evidence needed to anonymously tip off authorities, or to deal with the situation on your own (which, sadly, is sometimes more effective... often a LOT more effective, depending on your luck with the authorities in question, and your skills and connections otherwise..). Or, suppose you yourself are the victim of something at the hands of a person - let's say you're female, and have been raped by some *******, who is still threatening things like blackmail and the like (or, as is often the case with rapes, especially in high school, you'll get raped and then the ******* goes around telling everyone that you willingly slept with them, etc. For all you know it was a drug-helped rape and they took pictures during the act and are distributing them, etc). Now, the average rape victim goes through horrible trauma and only some are able to seek revenge or any sort shortly after the event, but given how difficult it is to get convictions when dealing with rapes, being able to access private messages could be helpful in terms of evidence later. I can also think of quite a few other ethical ways that hacking can come in handy when dealing with people heinous enough to rape someone, but I don't want to bore the people who actually read what I write more than I already do. Or, you know, there countless other ways you can use facebook hacking, given how much communication happens over facebook nowadays, towards ends that are ethical in context of that hypothetical situation. Now, I'm not necessarily saying that justifies the existence of programs like this - obviously far more abuse will happen than legitimately ethical use - it's just that the cons/pros of such a capacity existing in general came up, so I felt I should point out that pros could happen. |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
It wont work if you're connect to Facebook via https
|
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
tested and working in nitdroid!!
|
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
@Mentalist Traceur....
i can only compromise if hacking is been done by authorities (police & etc) in some cases but not by normal people...even police need a warrant @ sepina if you want to hacked somebody account...hacking without warrant will be consider guilty & all evidence that have been collected will not be relevent in court.... deal the situations by your own??? well we can do but honesty in the heartless world we living there only two outcome you gonna get... 1.you will die for it... 2.we will see you in court.... |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
Depending on what/who you're dealing with and who your local authorities are, it might not be possible to do so. In the examples I listed for example, police wouldn't get involved unless there was serious evidence already. Especially in the cases of rape, going through the official legal channels (even more so for teenagers and people still in school otherwise) typically makes things worse, both for the victim's recovery psychologically, for the victim's reputation, and so on. Quote:
And keep in mind that the above examples aren't serious criminals with resources and weapons. They're the kind of psychologically and physically devastating crime that people in their late teens and early twenties commit against each other, mostly. Serious criminals, the ones hardened by experience, I suspect, don't discuss their activities over facebook, on average. Naturally, the more hardened the criminals you're dealing with, the greater the risk of death or serious injury if you get involved. Same with whether or not you end up charged/persecuted yourself (law enforcement agencies typically look very harshly upon vigilantism). But sometimes situations come up where you can't expect authorities to reliably act, and then it's down to whether the individual in question believes the ethical need to help others is great enough to warrant taking those risks. |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
I agree about the abuse potential and the ethical implications, I am a rookie at security testing/hacking, and my ethical standards are as average as any other doctor out there, but as a hobby I enjoy pen testing, and love to show off my phone to my less tech savvy friends. They joke around with the fact that my phone(n900) does pretty much anything and how proud I am of it. I really dont want to get flamed or anything. I just wanted to have a tool like this at my disposal just for having it. Im not a thief nor a spy, nor a guy with trust issues :P just a n900 enthusiast that likes having as many features possible on my "phone"; specially if now other Os can have them too. anyway, thanks for the replys, I'll keep playing with etthercap, ssltrips, janus attks, etc, until someone desides to make a one-button python app that does it for me. Ps. thx to Mentalist for maintaining Aircrack-ng, its great to have in the community. keep it up |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
@hellflyer it will if you run sslstrip
|
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Hey isn't this just plain arp spoofing made easy? I think you can do this with the current available tools of maemo it's just the differences are this one is just button clicks away & is limited. While on maemo you need to familiarize the commands & is of unlimited use. And yeah... With maemo using sslstrip you can hack it even through https while on faceniff you can't.
|
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Hello there!!!
I got some idea about facebook sniffing. Actually,its an hacking tool which is available on www.learnhackings.blogspot.com I've downloaded it from the above site.....& its seems like working to me..... |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Search the repositories for Yamas ... It is 56789times better and more usable than that really. There is a thread on the forums as well.
Or http://pcsci3nce.info/?p=291 |
Re: [Request] FaceNiff (facebook sniffing/hacking tool)
Quote:
Along with some more characters to satisfy the validation. |
| All times are GMT. The time now is 01:08. |
vBulletin® Version 3.8.8