06 June 2011 | 17,914 views

FaceNiff – Taking FireSheep Mobile – Sniff & Intercept Web Sessions With Android

Check For Vulnerabilities with Acunetix

FaceNiff is an Android app that allows you to sniff and intercept web session profiles over the WiFi that your mobile is connected to. It is possible to hijack sessions only when WiFi is not using EAP, but it should work over any private networks (Open/WEP/WPA-PSK/WPA2-PSK).

It’s kind of like Firesheep for android, but maybe a bit easier to use (and it works on WPA2!).

Do note that a rooted phone is required. Please note that if the webuser uses SSL this application won’t work This application due to its nature is very phone-dependent so please let the author know if it doesn’t work for you.

There’s a great video demo of it working here:

Supported services:

  • FaceBook
  • Twitter
  • Youtube
  • Amazon
  • Nasza-Klasa

You can download FaceNiff here:

FaceNiff-1.9.4.apk

Or read more here.



Recent in Hacking Tools:
- XSSYA – Cross Site Scripting (XSS) Scanner Tool
- clipcaptcha – CAPTCHA Service Impersonation Tool
- dirs3arch – HTTP File & Directory Brute Forcing Tool

Related Posts:
- Firesheep – Social Network Session Stealing/Hijacking Tool
- Android Malware App Covertly Makes Purchases On China Mobile Market
- BlackSheep – Detect Users Of FireSheep On The Network

Most Read in Hacking Tools:
- Top 15 Security/Hacking Tools & Utilities - 1,860,256 views
- Brutus Password Cracker – Download brutus-aet2.zip AET2 - 1,047,245 views
- wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool - 620,608 views

Low-cost VPS Hosting

2 Responses to “FaceNiff – Taking FireSheep Mobile – Sniff & Intercept Web Sessions With Android”

  1. Fasada 7 June 2011 at 7:36 am Permalink

    WPA2 hack in 1 minute? Are you serious?

  2. j 22 June 2011 at 6:00 pm Permalink

    Just checked – it does not hack WPA2, it uses ARP spoof and it works!