Saturday, 14 January 2017

SSL strip attack (MITM on HTTPS)

3 comments:

  1. You can penetration outside the network yes or no

    ReplyDelete
  2. I am using Wildcard SSL Certificate (https://sslretail.com/wildcard-ssl/) on my website, It is clients mistake that they connect to un-trusted provider. What a web-server admin can do to avid such attack?

    ReplyDelete
  3. hey , I am getting this error while trying to do SSL-striping :
    iptables: No chain/target/match by that name,
    while running command :-
    iptables -t nat -A -PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 8080
    in kali linux. how to resolve it ? i tried reconfiguring my iptables rule & various other solutions on web.

    ReplyDelete