What is this about?
If you know Firesheep or Faceniff, you probably know what this is about ΓÇô OpenSource one-click session hijacking using your android smartphone or tablet computer.
If you do not know one of these tools, IΓÇÖll try to explain what DroidSheep is.
Maybe you know Bob. Bob is a wellknown person and Bob loves coffee. Every morning, he takes his laptop and visits one the famous green coffee bars, has a ΓÇ£grande vanilla latteΓÇ¥ and writes messages to hisfriends. For doing that, Bob uses the coffee bars WiFi ΓÇô because it┬┤s free and fast.
One Morning, Bob is just writing a message to his girlfriend, Eve enters the coffee bar. Eve has an Android phone and Eve uses DroidSheep. After ordering a ΓÇ£venti caramel macchiatoΓÇ¥, Eve sits down, takes her phone and starts browsingUsing Bobs identity. She can watch at his friends. Read his messages. Write messages. Write wall posts. Remove friends. Delete Bobs account. Without getting ever in touch with Bob.
When Bob is using the WiFi, his laptop sends all the data intended to be received byover the air to the coffee bars wireless router. As ΓÇ£over the airΓÇ¥ means ΓÇ£captureable by everybodyΓÇ¥, Eve (or her phone) can read all the data sent by Bob. As some data is encrypted before being sent, she cannot read Bobspassword, but in order not to make Bob enter his password after each click,sends Bob a so called ΓÇ£session idΓÇ¥ after logging in, which Bob sends with each interaction, making it possible forto identify Bob. Usually only Bob knows this id, as he receives it encrypted. But when Bob uses the coffee bars WiFi, he spreads his session id over the air to everybody. So Eve takes this session id and uses it as hers ΓÇô andcannot determine, if Bob or Eve uses this id.
DroidSheep demonstrates how easy an attack like this can be ΓÇô Just start DroidSheep, click the START button and wait until someone uses one of the supported websites. Jumping on his session simply needs one more click. That┬┤s it.
Although DroidSheep is not made for doing such attacks, anyone can test and assure that it really works. For the ones who are interested in how this works, there is the source code public available (see download section).
DroidSheep is NOT INTENDED TO STEAL IDENTITIES.
It shall show the weak security properties of big websites.
Please be always aware of what youΓÇÖre doing.
I AM NOT RESPONSIBLE FOR ANY DAMAGES THAT HAPPEN BY USING THIS SOFTWARE!
Home Site: http://droidsheep.de (Not available more for download !! )
DroidSheep_15.apk, related to DroidSheep_15.apk