Welcome back, my novice hackers!
As we saw in my first tutorial on Facebook hacking, it is not a simple task. However, with the right skills and tools, as well as persistence and ingenuity, nothing is beyond our capabilities.
One of the cardinal rules of hacking is: "If I can get physical access to the computer... GAME OVER!" This means that if I were given even just a few moments to the machine itself, I can hack anything I want from that computer—including Facebook passwords.
I recognize that not all of you are technically savvy, though, that doesn't mean you can't be with some hard work. So this Facebook hack is for those of you without either the technical savvy or the work ethic to become so. All you need is a moment or two of unfettered physical access to the target's computer and you can easily have their Facebook password.
Remember Me?
This hack relies upon the fact that most of us want websites to remember us when we return. We don't want to put in our username and password every time we want to access the site, so we tell the browser to "Remember me." In that way, we don't need to re-authenticate and provide our password, our system simply remembers it and provides it to the website.
Of course, those passwords must be stored somewhere on our computer. The key is to know where those passwords are stored and how to crack the hashed passwords when we find them. For instance, Mozilla stores the users passwords at:
c:/Users/Username/AppData/Local/Mozilla/Firefox/Profiles/**.default/cache2/entries
As you can see in the screenshot below, I have displayed that directory and password hashes from a Windows 7 computer running Firefox 36. These are all the saved passwords from various websites that Firefox has stored.
Note that the location of these passwords is in different places for each browser and sometimes in different places on different operating systems with the same browser. Look for more on this subject in my Digital Forensics series in the near future.
Elcomsoft's Facebook Password Extraction Tool
Fortunately for us, there is a company in Russia named Elcomsoft.
This company employs first-rate cryptographers and they develop and sell software to crack various password encryption schemes. (As a side note, a cryptographer from Elcomsoft was the first person arrested and prosecuted under the DCMA when he came to the U.S. for a conference. He was eventually acquitted.)
Their software is listed as digital forensic tools, but they can just as easily be used for hacking purposes. One of their tools was used for the iCloud hack that revealed nude photos of Jennifer Lawrence and other Hollywood stars in August 2014.
Elcomsoft developed a Windows tool named Facebook Password Extractor (FPE, for short) that extracts the user's Facebook password from its location on the user's system (the user must have used the "Remember me" feature) and then cracks it. Of course, we need physical access to the system to do this in most cases. Alternatively, if we can hack their system, we could upload this tool to the target system and then use it or we could simply download the user's browser password file and use this tool locally on our system.
You can download this free tool from Elcomsoft's website, which officially supports the following web browsers (though it may work on newer versions).
- Microsoft Internet Explorer (up to IE9)
- Mozilla Firefox (up to Firefox 4)
- Apple Safari (up to Safari 5)
- Opera (up to Opera 11)
- Google Chrome (up to Chrome 11)
The process of using this tool is almost idiot-proof. (Almost a requirement for Facebook hacking, wouldn't you agree?) You simply install it on the system whose Facebook password you want to extract and it does everything else.
One of the drawbacks to using this tool is that Elcomsoft released it back in 2011 and it has not been updated since. Maybe we should make this a Python project for the Null Byte community in the near future?
Look for more on Facebook hacking and developing the skills and arts of a professional hacker here in the near future, my novice hackers!
Just updated your iPhone? You'll find new emoji, enhanced security, podcast transcripts, Apple Cash virtual numbers, and other useful features. There are even new additions hidden within Safari. Find out what's new and changed on your iPhone with the iOS 17.4 update.
59 Comments
Very interesting part! And I would love to see FPE as python project! Nice work
I had this programm and it doesnt work
so download kali linux2.0 the best os for hacking ever(2.5gb setup)
do you have link for that?
I really need someone to help me in leaning on how to hack
I need hacking education
Have you finally learnt how to hack?
Hello bro I need your help how can I contact you?
cant we make USB password extractor ? :v
https://github.com/AlessandroZ/LaZagne
you can put laZange onto a usb with a bat file. LaZange will take all passwords from a computer then send it to you usb
what if the computer they used had a Deep Freeze? would i take thier password ?
or you can press F12, click on password, edit as HTML and change input type from "password" to "text".
There are three methods:
Almost everyone would use the 3rd (or the 2nd) method, which are related to remote access.
Its pretty difficult to use the the 1st one, but if its possible, then PETR is right.
wait how do i hack and upload it on target's system or how do i download the target's browser password
Cristy NX - Just by seeing your question I see you really need to start from the very beginning. This is like someone coming to me wanting to know how to play electric guitar and they want to start by learning to play like Joe Satriani...not going to happen. WAAAAy before you ever get to this stage learn the basics, you will be glad you did. Most famous words any fledgling hacker needs to hear is THERE ARE NO SHORTCUTS. Good luck. =)
OTW:
Where did you learn to do all this?
Chevy:
I started with learning the basics of computing. Then, I advanced to security and finally how to break security. Beyond the basics of computing, I learned the same way you are learning, by doing, experimenting and trying again.
OTW
Teach me please
What do u want to learn?
Do you know how to hack fb accounts by using keyloggers
or how to create a keylogger
Google is your best friend.
I've written keyloggers that log the window they are currently in as well as the text they type and then it would e-mail the created log file to a email address created and checked in a public place.
You could easily create a program then give it a fake extension like .JPG and then change the icon to a .JPG icon, make the program open an actual picture when ran the first time and your in without being detected.
OTW
Man u sure have good posts
If a person logged on my android phone with his facebook account how can i get his account?
put a keylogger on your phone then have him login again lol
Or you could turn on screen recording if you hand over your phone to someone
I need help getting into my Facebook page... I forgot my password, and do not have access to my email address.... I'm desperate...help
You can contact Facebook tech support, perhaps they may assist you?
Remember password next time? Remember how to get in the email next time? Work on your engineering skills a bit? All of the above?
I have contacted them, sent emails, no response....please help
Refer to my previous response?
No wait!
Amuse us please.
How did this occur that you can no longer access FB or email of accounts you used frequently?
Because I forgot my passwords is ridiculous as an answer or vector. Also I suppose you didn't have any other recovery options either, and only a certain type of group can be social engineered to help you achieve your goal of breaking into your account? Wrong. Try again. But please persist and tell us.
CYBERHITCHHIKER - Wow, can you be any more condescending and rude to someone? You know a lot of people looking for completely innocent help end up here by searching Google with their questions. I have always understood we try to help folks here, not accuse them instantly of trying to swindle a hack out of somebody...
RENEA LEVERETT - Facebook won't help you with crap. You will either need to recreate your account or find someone to hack your account for you. Good luck!
Thank you!! I thought this was a forum that would help me, but YOU insist on making fun, of what I'm asking.
You are welcome. I agree, because you can't explain.
Side note: Nowhere on this site it says we help with illegal activities..
exit 1
Yeah, I'm taking Cx2H's side on this. You don't understand the point of our community.
No we just show people methods of hacking, er pwning, er I mean cyber security just because they are curious... REALLY? (smh)
Totally awesome ;)
still lacks some effectiveness and doesn't work for all computers
Is it possible to do this remotely in backdoor?
Yes. Simply upload it to the victim machine.
sir i am using kali sana. wn ever i try to use SET toolkit for fb password but some error msg is comming like apache2 Durban
this is happening can u help me to solve it?
Can one be hacked without any access to the mobile device being used
Doesn't work.
Are you using it on one of the vulnerable browsers? Did the user use the "Remember Me" feature?
Yes the password for facebook is stored in Mozilla cookie. Also I have one stored in Chrome. But I think I'm doing something wrong. Once the Password Extractor boots up, there's no option to load the files located in 'Entries' folder. FPE simply pops up an error "No authentication data for facebook accounts were found on this computer". Opening the encrypted entries with the "FPE" program hasn't helped either.
How can i get a facebook password from cellphone? I can`t find where android stores cookies and there ain`t any tool that i found that can extract the password. Any ideas?
Web pass browser view would be more easy to use if you have physical acces to the victim´s machine.
is there any body who can tell me that is it possible to hack whatsapp conversations????
Elcomsoft has a tool called Whatsapp eXplorer. if you have iCloud/Google account details, or physical access to the device, you hve all the person's conversations.
well this is handy
so i could use some help, i cant get access to either my old facebook or gmail. and unlike the above user i have a open and honest explanation. i just got outta jail, and the password i made two years ago high on drugs is something i havent the slightest hope of remembering. if anyone could help id be forever grateful
legendary nirsoft tools are much better...
Download kali linux 2.0This os is the heaven for hackers or who want to become hacker.You got 300+tools like metapolist,beef,nmap,nikto,THC hydra,owasp,setoolkit,sqlmap and manyyyyy more
kali linux 2.0 is effective on facebook?
facebook hacking its simple coz u can get email and u can join , but hack its how to hack website or mor idk what more but im try to practic kali
Could you please help me how to hack fb acc? Cause when i tried to forgotten password, it won't show i don't have any access to these. What should i do?
Are you trying to get into a account you own? And just forgot the password? Message Facebook support.
facebook.com/rk.vai.39750
I wants to Lern facebook password hacking
Share Your Thoughts