This tool provides a demonstration of the HTTPS stripping attacks that I presented at Black Hat DC 2009. It will transparently hijack HTTP traffic on a network, watch for HTTPS links and redirects, then map those links into either look-alike HTTP links or homograph-similar HTTPS links. It also supports modes for supplying a favicon which looks like a lock icon, selective logging, and session denial. For more information on the attack, see the video from the presentation below.
Step 1:- Download SSLStrip
Step 2:- Unzip the downloaded files use "tar -zxvf sslstrip-0.4.tar.gz"
Step 3:- Build SSLStrip change directory to unzip folder run "python setup.py build"
Step 4:- Install SSLStrip run "sudo python setup.py install" , Requires root privilages
Kritik dan saran kirim aja di komentar saya..
Thanks n Good Luck..
No comments:
Post a Comment
kritik dan saran kirim aja disini..