BlackSheep plugin to detect FireSheep users

Following on from my previous post, another plugin has been released to combat the FireSheep plugin… cleverly named BlackSheep.
Unlike the FireShepherd standalone program, Blacksheep is also a firefox plugin that sends out a fake session ID’s onto the network. BlackSheep then monitors the network for anyone else using the fake session ID. As the session ID is fake, anyone else using the ID mush running instance of FireSheep (or another session capturing tool).
BlackSheep can be downloaded from http://www.zscaler.com/blacksheep.html.
This is a much better way of protecting yourself against the FireSheep epidemic as it doesn’t rely on a false sense of security like FireShepherd. Unfortunately the actual vulnerability is within the Web 2.0 websites that use non-ssl encrypted sessions to exchange session cookies. Whereas FireShepherd just used a DOS attack on the FireSheep plugin (with no guarantee that the user hasn’t modified FireSheep to protect against this), BlackSheep tells the user of any active active FireSheep users on the network.
Advertisements