Network-related apps that take advantage of the superuser permissions
Did you root your Android-based smartphone or tablet, or are you thinking about it? Well, here are seven free network-related apps that take advantage of the superuser permissions. In this list, you'll discover apps that help with the network configuration and security of your device, apps to do sharing and sniffing on networks, and apps that demonstrate network hacking and security risks.
DroidSheep by Andreas Koch
Heard of the Firefox add-on called Firesheep that can hack people's accounts? Well, this Android app provides similar web session hijacking (sidejacking) on social networking and other sites that don't fully secure logins and cookies with SSL encryption. It works on Wi-Fi networks secured with WEP or the Personal (PSK) mode of WPA or WPA2, in addition to unsecured or hotspot networks. Like other session hijacking tools, it doesn't work on WPA/WPA2-Enterprise networks using 802.1X authentication, which isn't vulnerable to user-to-user eavesdropping.
You can use DroidSheep to demonstrate to yourself or others of how easy it is to take-over other user's unsecured web sessions. You just open the app, agree to their disclaimer, and tap Start. You'll start seeing the list populate once users on the network login to unsecured sites, displaying their URLs and session IDs. Then you can tap on an entry to open the site in full or mobile view, save the cookies, or export the cookies via email.
Seeing just how simple session hacking is may prompt you or others to better secure your web sessions. Some websites, such as Facebook and Twitter, let you optionally enable HTTPS/SSL encryption. Remember, the URL of SSL-encrypted web sessions begin with https instead of http. So before logging onto any site on a public or untrusted network, you might just try adding an s to the http of the URL to see if SSL encryption is supported.
When developers discuss who the world’s top programmer is, these names tend to come up a lot
Love him or hate him, you have to admit that the founder of the free software movement isn’t shy about...
Adding a 61st second has caused problems in the past, and some want to do away with it
In a recent analysis of a quarter million endpoint devices in 40 enterprises, every single corporate...
Businesses can begin testing the new features now, with a full release expected later this year
Court says NSA can keep collecting phone records... Vandals cut cables again... Leap second largely...