Security Analysis and Implementation of Session Hijacking on Different Operating Systems

Abstract

Computer networks, both public and private are essential in today's life. Security is the big issue for all networks in today’s environment. Session Hijacking is still a problem of network security. The aim of session hijacking is to hijack the user account without the acquaintance of user-name or password. The practical part of this thesis starts with the setup of a test bench with three types of computers, an attacker, legitimate client and a LAMP server. Passive and active sniffing attack was performed on the network. By using LAMP sever this thesis evaluates the result of security analysis of session hijacking on different operating systems.