Blacksheep Coutnermeasure For Firesheep
Not so long i wrote on my blog about Firesheep HTTP Session Hijacking Tools, and now there's another tool to countermeasure this type of attack. A free Firefox plugin called Blacksheep, which serves as counter-measure. Blacksheep combats Firesheep by monitoring traffic and then alerting users if Firesheep is being used on the network.
BlackSheep does this by dropping 'fake' session ID information on the wire and then monitors traffic to see if it has been hijacked.
It is this request that BlackSheep identifies in order to detect the presence of Firesheep on the network. When identified, the user will be receiving the following warning message.
FireSheep and BlackSheep can not be installed on the same Firefox instance as they share much of the same code base. If you want to run both Firesheep and BlackSheep on the same machine, they should be installed in separate Firefox profiles.
So if you feel not safe browsing in public network such as hotspot, you can run this tool to guide you along your browsing time. If there's some alert in your network, don't be panic, just logout your account such as : facebook, wordpress, amazon, etc. and your account should be safe, but it will be a little annoying...It's better to try
BlackSheep does this by dropping 'fake' session ID information on the wire and then monitors traffic to see if it has been hijacked.
It is this request that BlackSheep identifies in order to detect the presence of Firesheep on the network. When identified, the user will be receiving the following warning message.
FireSheep and BlackSheep can not be installed on the same Firefox instance as they share much of the same code base. If you want to run both Firesheep and BlackSheep on the same machine, they should be installed in separate Firefox profiles.
So if you feel not safe browsing in public network such as hotspot, you can run this tool to guide you along your browsing time. If there's some alert in your network, don't be panic, just logout your account such as : facebook, wordpress, amazon, etc. and your account should be safe, but it will be a little annoying...It's better to try
0 comments: