11 replies to this topic

[hetra]

Hello All,

Apparently, AJAX has a weakness (on Facebook anyway), I want to know if that is true and any other weaknesses in Facebook.

Thank You.

[plypencil]

AJAX is a library built on JavaScript. Yes there are lots of vunerabilities in Javascript but I do not know if any of them are explotable or if they affect facebook.

[hetra]

So Facebook would use PHP for their passwords, HTML for the pages, CSS to make it look better but AJAX does what?

Asynchronous JavaScript And XML (what's XML?).

[Alexander]

XML is an acronym for eXtended Markup Language, and can be used to transfer data within nodes, although when we normally talk about AJAX the XML portion is not used. JS is speaking directly with PHP.

Designers of Facebook applications may rely heavily on AJAX, as not requiring the page to refresh is an obvious plus for the user of the app, sometimes they neglect to secure the portion of the code and a user may be able to access the back end database by themselves (IE: Not within application), and by chance could use the backend to capture passwords, or do even more such as sending messages, or modifying values transparently.

Exploits of these natures are often exploited by only one person/party, I doubt if you ever found one not yourself that it would be up there by the time you tried to use it. You could look at the various zero-day proof of concept facebook exploits for ideas of what types of applications can be afflicted by those bugs.

[hetra]

Thanks alot Nullw0rm, that answered it. But some apps are made by Facebook and others by other developers, so the Facebook made ones would probably be stronger?

[Alexander]

Yes, they're fairly robust in their security, as they're the ones who have to help out application programmers keep their applications secure. In reality though, there can be just as simple and major a flaw in theirs as others, it all depends on what they're attempting to develop.

[ferovac]

on the other hand you can do some wardriving and connect to someones network and get there user/pass for everything in no time, but that is illegal so dont do that

[hetra]

Wardriving? Could you go deeper into that subject?

[Alexander]

Hunter100 said:

Wardriving? Could you go deeper into that subject?

I'm not sure he knows what he's talking about, the best you can get from wardriving is a single username/password from a targetted user, the physical way.

[johnnyb2]

Yeah, wardriving is basically searching for wifis to connect to.

[hetra]

Why wardrive, when you could do it over the internet in a different area?

[ferovac]

Hunter100 said:

Why wardrive, when you could do it over the internet in a different area?

i dont think so!

i assume you are getting into this because your trying to get someones pass, there are a number of web exploits but i seriously dout you will get any of them to work, it takes a lot of trying and failing to come up with something.

you could do some forme of dos attack, but that will only(if you succeed) get there server down, now point in doing that

there is always buff overflow but that takes even more time, and will probably get you nowhere

and beside that two best students from my generation are now working for google, they recently stoled a franc chef from google.. the point is facebook hires the best, so dont truble yourself with that

the only thing left is the other side of the potenciale connection ( the victim)

you can connect to the victims network and these days that is very very simple aircrack(for wireless) and ettercap and wireshark isnt bad to have

schools, internet cafes, cafes with wireless , a lot of librarys offer free wireless connection

those are your destinations

you can make a firefox plugin that is a keylogger and install it on firefox on a victim comp and make it send you logged data on a mail or to a server

but as i sed before that is illegal so dont do that !