Firsheep Vs Blacksheep

Firesheep is a Firefox plugin that allows anyone on a public WiFi network to hack into other users' social media accounts like Facebook by viewing and stealing their session cookies. It scans the network, shows logged in user sessions, and allows directly accessing accounts without logging in. BlackSheep is a counter plugin that sends fake session data, monitors for theft, and alerts users if Firesheep is detected on the network. However, it does not automatically disconnect or block the Firesheep user. The author agrees social media sites should improve security and users should be aware of risks on public networks.

Uploaded by

Dominique De Leon

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

36 views

Firsheep Vs Blacksheep

Uploaded by

Dominique De Leon

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as DOCX, PDF, TXT or read online on Scribd

You are on page 1/ 2

Dominique De Leon - Social Media Hacking

Firesheep

Firesheep is a plug-in for

the Internet Browser -
Firefox - that makes it
possible for anyone
connected to hack your
social networking site
account like Facebook. If
you are connected on a
public WiFi network, a
person with FireSheep can
scan the network for and
see you account. He can
open your account without
logging in since your
username and password are stored on the HTML session cookies.

By clicking the “Start Capturing" button, it will show all the sessions of those who are
logged in on a WiFi hot spot. You can just double click on the sidebar to open the
account. This accounts range for Social Networking Sites, E-Commerce Sites, and
other sites that you log-in.

Firesheep is developed by Eric Butler and Ian “craSH” Gallagher .The browser
extension, firesheep, which was released Oct. 24 in a conference in San Diego,
California,

Mike Fratto, Editor of Network Computing, wrote that session stealing or sidejacking
should be addressed but releasing a tool that his grandmother can use is irresponsible.
Butler insists that Firesheep, that was downloaded more than 100,000 times for the
first 24 hours, just shows what criminals have been using for years. And it is now time
for “Websites to protect the people to protect the users using their services.”
Dominique De Leon - Social Media Hacking
BlackSheep

BlackSheep is another Firefox tool meant to

counter the Firesheep plug-in. BlackSheep
sends fake session ID information over the
network and monitors the traffic if it get side
jacked and then alerts WiFi users when
someone is running Firesheep on the
network.

If you used BlackSheep and were on WiFi, a warning will be displayed to show the
people using blacksheep and their IP address. Unfortunately, blacksheep only
allows detection of firesheep users but does not automatically block or disconnect you
from the network.

Sample Alert from Black sheep

Personal Note:

I was very alarmed to see that such cases and hacking now exist. The Internet
Connection here in the Philippines is slow and costly. For a laptop user like us,
students, it is a joy to connect in a public wi-fi for free inside a coffee shop or mall.
And since the function was done in a platform we have been using for years, Firefox,
it is not impossible in the Philippines.

I agree with Eric Butler that Social Networking sites should not be confident enough
and make sure that internet security and privacy be prioritized. We should also be
aware of such cases and how to counter attack them. With our life today almost
everything posted online, our identity, safety, and security is at stake.