How To Download And Install Firesheep For Firefox
Firesheep - firefox pluginThis post is for educational / information purposes only. This will only proves that using a public access point has its risk of exposing your online accounts.
So if you too want to prove that this works, then here's an article for you on how to download and install firesheep for firefox.
First, firesheep creator said that the firesheep works because the cookie used by unsecured websites are broadcasted publicly when you're on a public internet source. Cookies by the way is a file used by the websites to store your login session for them to lookup if a user is currently login or not while that user is requesting webpages from them.
That means that the cookies that has your login session for a particular website can be used anytime, given that an application can steal and use it discreetly. And yes, you're right, that is what this firefox plugin is intended to do.
Is it legal ?
Is it hacking ?
Is it immoral ?
Now, this post is not intended to determine if this application is bad or not. The thing is, a normal person without any hacking skills can be converted to become someone who can open others account. So you decide, but you're not here to know that right?
Whatever, let's start downloading and installing that very hot trending firefox plugin, the firesheep.
In order for it to run in windows operating system, you need to install WinPcap first.
* Download Winpcap and run the executable.
* Follow the instructions on the screen. The installation applet will automatically detect the operating system and will install the correct drivers.
* The WinPcap-based applications are now ready to work.
Next, having Winpcap, you are now ready to install Firesheep:
* Download Firesheep from the official website.
* In your Firefox, click Tools > Add-ons; a pop-up window will appear.
* Drag firesheep-0.1-1.xpi into that window.
* Restart your Firefox. After installing the extension you'll see a new sidebar. If you can't see it, go to View > Sidebar and select Firesheep.
There you go, firesheep is now installed on your computer.
Now, in order to test this if it really works without violating any rights, get two computer and connect it using your home internet. On the first computer, login you your facebook account, on the other computer where the firesheep is installed open facebook. The computer number two should open the facebook account used on the computer number one.
Having known this, here are some useful advice for not getting your own account being hacked.
1.) Never use open public wifi signal when accessing unsecured websites like most networking sites.
2.) If you have your own wifi signal, set the encryption to WPA and do not use WEP as firesheep can still steal the cookie over this.
3.) If you're a business individual, you may want to consider to use VPN to prevent firesheep-like from sniffing on to your computer.
This statement came from the official website of firesheep.
A Firefox extension that demonstrates
HTTP session hijacking attacks.