Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/1uc1f3r616/cookie-analyzer-and-session-hijack

A tool to find sensitive Keys and Passwords in your cookies, A reference guide on how to exploit them.
https://github.com/1uc1f3r616/cookie-analyzer-and-session-hijack

awseome cookies hack hijack session

Last synced: about 2 months ago
JSON representation

A tool to find sensitive Keys and Passwords in your cookies, A reference guide on how to exploit them.

Host: GitHub
URL: https://github.com/1uc1f3r616/cookie-analyzer-and-session-hijack
Owner: 1UC1F3R616
License: mit
Created: 2020-01-09T07:12:05.000Z (almost 5 years ago)
Default Branch: master
Last Pushed: 2020-10-19T16:03:35.000Z (about 4 years ago)
Last Synced: 2024-07-04T01:58:16.911Z (6 months ago)
Topics: awseome, cookies, hack, hijack, session
Language: Python
Homepage: https://1uc1f3r616.github.io/Cookie-Analyzer-and-Session-Hijack/
Size: 75.2 KB
Stars: 17
Watchers: 3
Forks: 2
Open Issues: 2
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        ![cookielock](https://user-images.githubusercontent.com/41824020/72046625-d40d6e80-32de-11ea-9618-9030debeea46.jpg)

[![HitCount](http://hits.dwyl.io/D-E-F-E-A-T/Cookie-Analyzer-and-Session-Hijack.svg)](http://hits.dwyl.io/D-E-F-E-A-T/Cookie-Analyzer-and-Session-Hijack)

[![DOCS](https://img.shields.io/badge/Documentation-see%20docs-green?style=flat-square&logo=appveyor)](https://github.com/D-E-F-E-A-T/Cookie-Analyzer-and-Session-Hijack/blob/master/helpers.md) 

## Implemented at [1UC1F3R616/Session-Hijack-101](https://github.com/1UC1F3R616/Session-Hijack-101)

# This Project is Divided into two Main Projects

* Cookie Hack and Session Hijack

* Cookie Analyzer - *A tool to find sensitive Keys and Passwords in your cookies*

## Cookie Hack and Session Hijack

* Take cookies from our target and send it back to us.

* Analyize cookie and do further Exploitation

* Specific hacks like *vtop* session hijack and *CSRF Token and Session Key* live fetch

* Focused on *Session Cookies*

* A user guide *How to Exploit*

## Cookie Analyzer (Analysis Dashboard)

> Data Visualization of user behaviour

    Social Networking

            

    Entertainment

            

    Creativity

            

    Productivity

            

    Other

> A Solid Database to facilitate Proper Searching

> Cookie Analysis of any website 

Project devlopment directions


> ♘ Scripts

> ♘ OKOK

> ♘ flana dikda oooooooooooooooooooooooooooooooooo_____________oooooooooooooooooooo

## Basic Taks

- [ ] Extend support for *Glitch-the-STD-IN-OUT*

- [x] csrf

- [x] token

- [x] specific search

- [x] websites visited-> .com, .net etc to identify

- [x] session Id

- [x] a user guide for noobs to how to use

- [ ] [must](https://www.optimizesmart.com/google-analytics-cookies-ultimate-guide/)

- [x] a brief directory about the different types of cookies, keep it short and precise.

- [ ] [our cokkie analyzer will have this analysis avail](https://stackoverflow.com/questions/4349147/python-create-cookies-and-then-load-a-page-with-the-cookies)

- [ ] Injector and Spreader

- [ ] Connection through port

### How to Spread it?

* Review my Django Project, :)  i.e Package Distribution

* Sir, My project... have a look. Can I change my attendence?

* You click something happens something blaaah

* Keep it simple, More curious you are More you fall the prey. Be lazy dear

### How to make it Persistant?

- [ ] Extend Support for *Sweet Ransomware*

#### [References and Help Guide](https://github.com/1UC1F3R616/Cookie-Analyzer-and-Session-Hijack/tree/master/refrences)

#### Incognito Issue

### Testing (Using VTOP for sole purpose)

> 1 

- [ ] Login with your vtop in Incognito, now use theft session cookie.

#### Idea Extention

- [ ] Our Malware will never let user login in any website which uses session cookies by Replacing the session cookies with garbage.