Stealing sessions/passwords and so on is something we’ve been able to do for a LONG time using Wireshark or Ettercap on a hub based or WiFi network running without encryption. But now with Firesheep anyone can do it, and they can do it VERY easily, which is somewhat scary. Firesheep is incredibly easy to use, download the add-on, log in to a public WiFi spot and click a button…you’ll then be shown images and user names of various people using networks such as Facebook, Twitter, Flickr, bit.ly, Google and Amazon. With a double click on their image, you’ll be logged in as them immediately.

Firesheep is free and open source and works on Mac OS X and Windows with Linux support being promised soon. The download rate of this add-on is epic with over 320,000 downloads in 3 days.

Some news about the tool:

• Firesheep: Making the Complicated Trivial
• Firesheep hacks into Facebook, Twitter
• Firesheep sniff tool prompts Facebook warning
• ‘Firesheep’ on Firefox could be used for b-a-a-d
• Lazy Hackers Unite: Firesheep Boasts +104,000 Downloads In 24 Hours

I expect you already know how to protect yourself from this kind of attack, but if you don’t…use a VPN whenever you are on a public Wifi spot! If you don’t have VPN access or can’t be arsed to set one up just make sure you force SSL/TLS on every site you surf – but do note to protect against this attack, you have to encrypt the entire session and not just the initial authentication.

Google has a secure search option too here – https://encrypted.google.com/

You can find the slides from the Toorcon 12 presentation here:

Hey Web 2.0: Start protecting user privacy instead of pretending to

Requirements

Windows users are required to install WinPcap.

You can download Firesheep v0.1 here:

firesheep-0.1-1.xpi

Or read more here.

SET is a menu driven based attack system, which is fairly unique when it comes to hacker tools. The decision not to make it command line was made because of how social-engineer attacks occur; it requires multiple scenarios, options, and customizations. If the tool had been command line based it would have really limited the effectiveness of the attacks and the inability to fully customize it based on your target. Let’s dive into the menu and do a brief walkthrough of each attack vector.

This is an extremely complete and advanced toolkit, which also harnessed the power of Metasploit and Ettercap and it provides following attack vectors:

• Spear-Phishing Attack Vector
• Java Applet Attack Vector
• Metasploit Browser Exploit Method
• Credential Harvester Attack Method
• Tabnabbing Attack Method
• Man Left in the Middle Attack Method
• Web Jacking Attack Method
• Multi-Attack Web Vector
• Infectious Media Generator
• Teensy USB HID Attack Vector

You can find some tutorials and videos on how to get up and running and use SET here:

Social Engineering Resources

You can download SET using SVN.

svn co http://svn.secmaniac.com/social_engineering_toolkit set/

Or read more here.

UCSniff is a VoIP & IP Video Security Assessment tool that integrates existing open source software into several useful features, allowing VoIP and IP Video owners and security professionals to rapidly test for the threat of unauthorized VoIP and Video Eavesdropping. Written in C/C++, and available on Linux and Windows, the software is free and available for anyone to download, under the GPLv3 license.

Why?

UCSniff was created as a Proof of Concept demonstration tool and a method of creating awareness around VoIP/UC threats. It can be used by VoIP/UC Administrators to test their own VoIP or Video Infrastructure in a pilot before vulnerabilities are rolled into production. It can also be used by security professionals as a method of convincing IT decision makers that security best practices should be applied to VoIP/UC in the same way that they are applied to other TCP/IP based, client-server applications.

New Features

• Real time VoIP and Video monitoring.
• New codec support, G729, G726, G723.
• GUI version of Windows and Linux.
• TFTP MitM Modification of IP phone settings.
• New VideoSnarf tool – Converts offline RTP pcap file to media file.
• Windows VLAN implementation, for VLAN Hopping in Windows.

Or read more here.

UCSniff is an exciting new VoIP Security Assessment tool that leverages existing open source software into several useful features, allowing VoIP owners and security professionals to rapidly test for the threat of unauthorized VoIP and Video Eavesdropping. Written in C, and initially released for Linux systems, the software is freely available for anyone to download, under the GPLv3 license. Some useful features of UCSniff that have been combined together into a single package:

• Allows targeting of VoIP Users based on Corporate Directory and/or extensions
• Support for automatically recording private IP video conversations
• Automatically re-creates and saves entire voice conversations to a single file that can be played back by media players
• Support for G.722 and G.711 u-law compression codecs
• Support for H.264 Video codec
• Automated VLAN Hop and Discovery support
• A UC Sniffer (VoIP and Video) combined with a MitM re-direction tool
• Monitor Mode
• Sniffs entire conversation if only one phone is in source VLAN

UCSniff was created as a Proof of Concept demonstration tool and a method of creating awareness around VoIP/UC threats. It can be used by VoIP/UC Administrators to test their own VoIP Infrastructure in a pilot before vulnerabilities are rolled into production. It can also be used by security professionals as a method of convincing IT decision makers that security best practices should be applied to VoIP/UC in the same way that they are applied to other TCP/IP based, client-server applications.

You can download UCSniff here:

ucsniff-2.00.tar.gz

Or read more here.