Overview - Firefox Profile ( A better approach)

   Did you know that all the settings you make in Firefox, like your home page, what toolbars you use, saved passwords and bookmarks are all stored in a special profile folder? It's true. Your profile folder is kept in a separate place from the Firefox program so that if something ever goes wrong with Firefox your information will still be there. It also means you can uninstall Firefox without losing your settings and you don't have to reinstall Firefox to clear your information or troubleshoot a problem.

  In my previous two posts, we were basically interacting with that folder directly. The two files key3.db and signons.sqlite are located in this folder called the "Profile Folder".  
Believe me, this is the folder the hacker should look for......
Now, there is a better way to look for the profile folder in Windows Xp, Vista & 7. 

Windows Vista and 7

1. Click the Windows Start button and type %APPDATA%\Mozilla\Firefox\Profiles\ in the Search box at the bottom of the Start menu, without pressing Enter. A list of profiles will appear at the top of the Start menu.

2.Click on the profile with “default” in the name to open it in a window.

Windows 2000 and XP

1. Click the Windows Start button, and select Run....
2.  Type in %APPDATA%\Mozilla\Firefox\Profiles\ then click OK.
   
3. A window will open containing profile folders.
4. Double-click the folder with “default” in the name to open it. 

What information is stored in my profile?

• Bookmarks and Browsing History: The places.sqlite file contains all your Firefox bookmarks and the list of all the websites you’ve visited. For more information see Bookmarks.
• Passwords: Your passwords are stored in the key3.db and signons.sqlite files. For more information see Remembering passwords.
• Site-specific preferences: The permissions.sqlite file stores many of your Firefox permissions that are set on a site-by-site basis. For example, it stores which sites are allowed to display pop-ups.
• Search engines: The search.sqlite file and search plugins folder store the search engines that are available in the Firefox Search bar.
• Personal dictionary: The persdict.dat file stores any custom words you have added to Firefox's dictionary. For more information see Using the spell checker.
• Auto-complete history: The formhistory.sqlite file remembers what you have searched for in the Firefox search bar and what information you’ve entered into forms on websites. For more information see Form autocomplete.
• Cookies: A cookie is a bit of information stored on your computer by a website you’ve visited. Usually this is something like your site preferences or login status. Cookies are all stored in the cookies.sqlite file.
• Security certificate settings: The cert8.db file stores all your security certificate settings and any SSL certificates you have imported into Firefox.
• Download actions: The mimeTypes.rdf file stores your preferences that tell Firefox what to do when it comes across a particular type of file. For example, these are the settings that tell Firefox to open a PDF file with Acrobat Reader when you click on it. For more information see Managing file types.
• User styles: If they exists, the \chrome\userChrome.css and \chrome\userContent.css files store user-defined changes to either how Firefox looks, or how certain websites or HTML elements look or act.

Hacking Firefox's Saved Passwords

  First of all i am not responsible for whatever you do to the PC you are experimenting on, whether you fuck it up.... For me its just for educational purpose!!!

Anyways if you have read my earlier tutorial than you might be knowing how to remove Master Password from Mozilla Firefox Browser. Its quiet easy to look for the password of a particular website and remember it for a few minutes but what if there are multiple usernames and passwords saved by that firefox user and you want to hack them all? Than here comes the need to steal the file that contains all passwords!!!

"If there is a file that saves the Master Password, than there must be some file that contains the saved passwords as well." It is quiet obvious but many of you havn't thought this before. For those who encountered this question in their minds, i want to say something. "Guys, thats a hacking thought! No looking back now."

So this tutorial is written on the fact that all the passwords stored in Firefox should be located somewhere in our computer in some file. It is quiet obvious that the passwords are not saved in "as is" form. Obviously, they are either encrypted or in some ununderstandable form. After a lot of Googling and testing i came on the conclusion that the passwords are saved in the file "signons.sqlite".

In Windows 7, this file is located at :-
D:\Users\<your user account>\AppData\Roaming\Mozilla\Firefox\Profiles\<your profile name>.default
In Windows Xp,
C:\Documents and Settings\<your user account>\Application Data\Mozilla\Firefox\Profiles\<your profile name>.default
NOTE : THE TWO TAGS <your user account> and < your profile name> are different for different users. Change Accordingly......

Now if this file is unreadable than how to look for the passwords? The solution to this is with you, the Firefox itself will reveal all secrets... Muhahaahaaa.

See, you just have to copy this file and replace your own file with this one. Now when you will open your Firefox browser and will look for the passwords than..............surprise surprise!!!

One thing i would like to share here is, we need not worry about Master Password as we are directly dealing with the file that contains the saved passwords. 

{K@R@N}