FaceNiff is an Android application that lets users access web sessions profiles over Wi-Fi networks, easily hijacking into the connected Facebook, Twitter, YouTube, Amazon and other accounts.
FaceNiff is developed by Bartosz Ponurkiewicz who created the Firefox extension Firesheep, that lets users hijack Facebook and Twitter sessions over Wi-Fi networks. Unlike Firesheep, FaceNiff works on WPA-encrypted Wi-Fi networks also.
Bartosz says on his website that the app is for educational purposes only, and urges users not to install it if it is illegal in their country.
To get started, you need to download and install FaceNiff from the official website here.
To protect your account from Faceniff, use SSL option while accessing FB from public networks. Change can be made in the setting menu of Facebook.
The app is confirmed to be working on the following devices.
- HTC Desire CM7
- Original Droid/Milestone CM7
- SE Xperia X10
- Samsung Galaxy S
- Nexus 1 CM7
- HTC HD2
- LG Swift 2X
- LG Optimus Black – original rom
- LG Optimus 3D – original rom
- Samsung Infuse
Here’s a video of FaceNiff in action