Skip to main content

Hacking Facebook through Social Engineering

By


One the way to hack Facebook is Social Engineering, but the question asked by nearly all the people who are new to hacking scene is that "What is social Engineering and how to hack a (Facebook) account by it?"
So i decided to write this article to explain what it is and give a real life example of my own.

First lets see what Wikipedia have to say:

"Social engineering is commonly understood to mean the art of manipulating people into performing actions or divulging confidential information."


According to Hacker's Jargon Dictionary:
"Social Engineering: n. Term used among crackers and samurai for cracking

techniques that rely on weaknesses in  wetware rather than software; the aim
is to trick people into revealing passwords or other information that
compromises a target  system's security.  Classic scams include phoning up a
mark who has  the required information and posing as a field service tech or a
fellow employee with an urgent access problem. "
So actually if you trick some one to give you the confidential information he is  manipulated by you. So now its clear that our beloved Phishing is also a kind of social manipulation. This might give you the size of it!

Lets get started:


So Phishing is a way to hack and its social engineering, but what are the other ways? Well apart from this you could trick the other person to give you his password. I know this might be really difficult but once you have mastered you could really make your name. Because the most wanted hacker of all times Kevin Mithnik actually used Social manipulation to hack though he himself couldn't write his own exploit!


An easy way is to guess the password from the information given, normally people use following things as their password:


  • Date of birth
  • Surname
  • Phone Number
  • School's name
  • Girl Friend's name :)
  • Favourite Movie
  • Favourite Band
  • Favourite Hero/Heroine 
  • Favourite Fruit! (I used one when I was young!)
These are only some, but if you know the other person very well these might work!

Another idea is to manipulate the other person in giving you the Answer to their security Question! This is what I am going to cover in Real Life Example! 

"THE MAIN TRICK IS TO EXPLOIT THE TRUST BASE TO HACK!"



So it means you should exploit the trust that victim have in you to get the information, the trust could be of a friend, colleague or official (If you are pretending to be a Facebook guy who need their password).


REAL LIFE EXAMPLE:


Some months back my best friend challenged me to hack his Facebook account, unfortunately he was a reader of my blog and knew all the ways like Phishing or Keylogging. So I couldn't hack him for much time every time i tried i failed. So I though of social engineering.
What I did first was to got the primary Email Address of Facebook, I got that easily by Visiting his Profile page. The email was in Hotmail!


So I opened the Hotmail password reset page > https://account.live.com/password/reset and gave his email this gave me the following page:



Here the security Question was " Name of Best Friend from Childhood?", it seemed pretty easy so started entering the name of all his friends but to my amazement the name was someone's whom i didn't knew.

So I went to the Chat and manipulated him. Following is some text from chat:
====================================================
Me: Hello, how are you/
He: Fine. whatsup!
Me: Nothing, just getting ready for your party.
He: Ohh great, it is going to be fun!
Me: Yah i know, who else is comming?
He: Only you and [He named some which were not the answer]
Me: Hey havent you called you old friends? I wanted to meet them.
He: Nupp!!!
Me: Are in contact with them, BTW who is your best friend apart from our group?
He : Ohh my best friend apart form you people is Arslan.
Me: ohh great looking forward to the party! bye.
====================================================


So those people who don't know ARSLAN is a name and to my Good Luck it was also the password! So I hacked his email and from their I hacked his Facebook account,


Don't worry no harm was done I just showed him that i did it and returned him the account because it is unethical to hack people to harm them. Real Hackers don't do this and I for my self only hack my dearest friends (who don't mind) for fun that all for me!
So from this example you people might have learn that how easy it is to hack through Social Engineering. But ALAS! the success rate is very low, but still where nothing works this works!



Labels:

Comments

Post a Comment

If you have any doubts.. Let me know 😊

Have a look!

Norton Internet Security 2013 20.0.0.39

By
 Norton Internet Security 2013 20.0.0.39 Norton Internet Security 2013 provides an early look at the next generation of Symantec's security suite. There are no major changes this time around - at least, not yet, and not that we've spotted. The most significant and obvious tweaks have been made to the interface. The style is similar to the previous edition, but it's been optimised for touch (and if you install the package on Windows 8, can now be controlled via a Metro app). Support for hardware acceleration should improve its responsiveness, too. The program does also provide improvements in protection, although they're mostly out of sight. The Insight file reputation database is now updated more rapidly, for instance; Insight technology has been incorporated into the firewall to "improve the ability to detect and block malicious network activity"; SONAR now works in Safe Mode to detect more threats via their behaviour; and Internet Security 2013 c
10 comments
Read more

Gangs of Wasseypur II (2012) DVDScr 650mb

By
Storyline: Wasseypur is no more the town that was once consumed by the raging war between Sardar Khan and Ramadhir Singh. It has spawned a new generation of money squandering lobbyists, turning into foolhardy gangs overnight. With illegal profiteering through scrap trade auctions over the Internet, corrupt government officials, election rigging and hooliganism, the town got murkier. Everyone wants alliance with the most powerful man of Wasseypur, Faizal Khan. His sole ambition however, is to annihilate Ramadhir Singh, the man with the grand scheme. Gangs of Wasseypur-Part 2 is a fitting conclusion to this story of vengeance, which by now, not just the family but also this town has come to inherit. Movie Info: http://www.imdb.com/title/tt2284926/ [TITLE]…………………….[ Gangs of Wasseypur II [DIRECTOR]………………….[ Anurag Kashyap [RELEASE DATE]………………[ 8 August 2012 (India) [FORMAT]:…………………..[ Matroska (MKV) [GENRE]:……………………[ Action | Crime | Drama [NO OF CDs]…………………[ 1 [FILE SIZE]:……
11 comments
Read more

How To Hack Facebook Account-PART-2- The Web Browser Attack

By
PART 1 LINK In this following post  ll discus with you about  how you can hack facebook account  using tools that can attack web browser's password safe. Each web browser has feature of storing passwords, every browser first encrypts that password and then stores it in password database but the fact is that their encryption method is so weak that these tools can retrieve passwords  from them with or without master password enabled. They can sometimes retrieve passwords even from cookies and caches stored by web browsers that means you only need your victim to use web browser at least for once. Here I am providing you link to those tools along with small description as per by their manufactures, all of them are free and one click and output ready tools, surely they don't require tutorials just because result is obtained just by a single click. Facebook Password Decryptor: FacebookPasswordDecryptor is the FREE software to instantly recover stored Facebook acc
16 comments
Read more