Droidsheep apk is one of the best Android security analysis application developed by Andreas Koch. Andreas Koch was born on 7 July 1986 living in Trier, Germany. Droidsheep is an Android app that permits you to sniff and intercept web session profiles over the WiFi that your mobile is attached to. In this article, I will accord How you can hack someone’s Facebook account or Another Social Profile and how you can test the security of your online accounts.
As I said Droidsheep apk is basically a session hijacking tool that allows it’s user to capture session cookies. What’s cookies and session hijacking now?
When cookies were invented they were little documents containing little documents about users and his preferences. These are the small files which are stored in user’s computer.
It can contain the time you visited the website, your shopping basket items, links you clicked on a certain website and much more. There are limits to who can read your cookies, only a certain website who saves information to a cookie on your computer can access it.
What is Session Hijacking?
- Finding and Taking over an existing network session.
- Finding a session which is not active, it can be time outed session.
Whenever you log in to any website ( say Facebook ) a session is created. To gain unauthorized access to the session is known as session Hijacking. Session hijacking is sometimes also known as cookie hijacking.
Also Read: How To Remove Other Users From Your Wifi
As I stated Droidsheep apk is one of the best Android security analysis application developed by Andreas Koch. This application is going to help you to capture session cookies over the wireless network. How does this work? Suppose 10 people are using the same WiFi network and you want to hijack someone’s cookies and use the web as him/her. All you need to do is to Start the Droidsheep apk and it will act as a router to monitor and intercept all the network traffic and then it will display active session profiles. Click on the IP ( victim’s) and you are done.
Note: Your android phone must be rooted and you must be targeted on the same network. The victim must be using the web in HTTP.
Requirements for Droidsheep apk
- Android 2.3 or higher
- Rooted Android device.
- BusyBox and SuperSu should be installed on that device
- Brain ( Which you already have )
Download: Droidsheep apk
How to use?
1. After installation is done Open the application and make sure you have enabled ARP spoofing and Generic mode.
- ARP spoofing: DroidSheep will act as a router and intercept all the network traffic.
- Generic Mode: It listens for any cookie, not only for the sites you know.
2. Click on the start button.
3. You’ll get all the active sessions profiles. Now you need to find out which one victim’s profile. I don’t know how you will do this but this is a must.
4. Click on the victim session profile and you will get four options
- Open Site: This option allows you to use victim’s account as him/her/it. If you want to use victims web accounts ( Facebook, Twitter, Gmail ) click this option.
- Remove From List: You can Remove the selected session from the list by using this option.
- Add host to blacklist: This Prevents capturing cookies from the selected server in future.
- Export via eMail: This option will allow you to send the cookie values via Email.
- Save Cookies: This allows you to save the cookies for later use.
What’s APR spoofing?
ARP ( Address Resolution Protocol ) spoofing is a type of attack in which a threat actor sends falsified ARP messages over a local area network. This brings about the linking of an attacker’s MAC address with the IP address of a legitimate computer or server on the network. Once the attacker’s MAC address is connected to an authentic IP address, the attacker will begin receiving any data that is intended for that IP address.
Did you know? Andreas Koch stopped developing DroidSheep because of a strict law in Germany that forbids distribution of hacking tools.
Droidsheep apk is one of the best Android security analysis application developed by Andreas Koch. I hope the above information is useful to use. Do all this by your own I am not responsible for anything you’ve done. Thank you!