19 September 2008 | 9,352 views

Surf Jack – Cookie Session Stealing Tool

Prevent Network Security Leaks with Acunetix

A tool which allows one to hijack HTTP connections to steal cookies – even ones on HTTPS sites! Works on both Wifi (monitor mode) and Ethernet.

Features:

  • Does Wireless injection when the NIC is in monitor mode
  • Supports Ethernet
  • Support for WEP (when the NIC is in monitor mode)

Known issues:

  • Sometimes the victim is not redirected correctly (particularly seen when targeting Gmail)
  • Cannot stop the tool via a simple Control^C. This is a problem with the proxy

Requires:

You can download Surf Jack here:

surfjack-0.2b.zip

Or read more here.



Recent in Hacking Tools:
- InsomniaShell – ASP.NET Reverse Shell Or Bind Shell
- WhatWeb – Identify CMS, Blogging Platform, Stats Packages & More
- Kali Linux – The Most Advanced Penetration Testing Linux Distribution

Related Posts:
- sessionthief – HTTP Session Cloning & Cookie Stealing Tool
- Firesheep – Social Network Session Stealing/Hijacking Tool
- login (security through obscurity) – weird PHP script

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,878,866 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 1,076,294 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 629,313 views

Advertise on Darknet

2 Responses to “Surf Jack – Cookie Session Stealing Tool”

  1. SpikyHead 21 September 2008 at 6:50 am Permalink

    Well have used almost every tool based on Scapy and realy liked it. So should check this one out too..

    Moreover, It seems like a very useful tool…

  2. Goodpeople 22 September 2008 at 7:17 am Permalink

    It’s fairly easy to program you way around threats like this. Just include the destination MAC address in the cookie when you send it out (encrypted of course) and check it against the originating MAC address while reading the cookie back in..