When to use it
How is it done
Internet Explorer address bar acts as a shell or a command line for you. So, just view the source of the page, figure out the field you would like to alter and issue the command –
This thing works simple as this. To view the cookie stored by the site or to set its values use –
I guess this should be enough to show you the way.
This is an less mentioned commonly used hacking technique. The funda is simple, if you know a person, you know his password. Its a simple discipline which tells you the human behaviour patterns. Eg. people keep passwords which they can easily remember, in office they would keep passwords which would be somewhat relevant to the organization name or the project and at home they would use their personal favorites for the same. Other than the passwords, other information related to a target machine or network or Problem turns out to be really helpful. In one of the hacking stories I read, our guy wanted to get through a university web site. He somehow managed to get through the router and the firewall on the way into the network and managed to get to the database server. Now, he needed the password to get into the database for the sa account (popular default account in SQL Server). So, the dude called up the university webmaster, just to take a chance and told him that he was calling from Microsoft and needed to know the version of SQL server they were using and whether or not they need a certain patch. The webmaster told him to hold on for a second, logged into the database and told him the version. Dude just said thanks and hung up, thought for a minute and entered a couple of passwords which worked. Guess what could have given him the password ? He just listened to the keystrokes carefully and figured out a pattern which told him that the password could be admin followed by a 3 digit number, as it was. So, sometimes, when you need a password, just ask for it 🙂 and thats social engineering.
More on hacking next time.