Darren demonstrates a little man-in-the-middle attack using SSLStrip, an epic tool for removing that pesky encryption from your victims browsing session. Go from secure site to clear-text passwords in one simple step.

Moxie Marlinspike‘s SSLStrip, released at Blackhat/DEFCON this year, is a tool that transparently hijacks HTTP traffic and redirects HTTPS links to look-alike HTTP links. While this description barely scratches the surface, Darren’s segment takes a closer look including a pracitcal demonstration of a man-in-the-middle attack using arpspoof and a little luck with remote-exploit’s BackTrack 4 penetration testing distribution.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

16 Comments

  • First of all, hello to everyone from Italy.
    I appreciate a lot your always interesting and exhaustives hacking videos, but i punctualize that SSLStrip is unuseful without IPTables because of “transparently hijacks HTTP traffic and redirects HTTPS links to look-alike HTTP links” wouldn’t be possibile in absence of that tool; Without IPTables, SSLStrip is reduced to nothing more than an easy sniffer.

  • YearZer0 4 years ago

    ALCOHOL ABUSE!!! lol!

  • Beaverman 4 years ago

    First off all the backtrack “tutorial” was really nice, and you really know what you are doing, i would like you to do a lot more..

  • sniper 4 years ago

    this is probably one of the most eye-opening tutorial here at hak5 !

    btw, check out http://pinoysecurity.blogspot.com for more free tutorials like the one just featured above…

  • Hi,
    I tried you video tutorial, it is very nice to watch but I tried on Mac and Linux Ubuntu machines. It is not at all giving any opened ports list. So how could I sniff the traffic of these machines.

  • I was just wondering, would this method work on a vps machine running a linux distro?
    The reason why I ask this becouse i have a vps control panel which i bought so I can open a few vps users for my friends and me, and knowing one of my friends he is just what my neighbors would call a “get away from my password” guy…
    SO CAN HE USE THIS SSL METHOD TO GET PASSWORDS FROM OTHER USERS ON THE SAME MACHINE OR EVEN WORSE ON THE VPS NETWORK WHICH MAY COME TO VPS TERMINATION IF FOUND BY ITS ISP?

  • DunDead 4 years ago

    I tried to install arpspoof on Sabayon 5.2 but the link you have is missing the install-sh or install.sh file.

    admiral arpspoof # ./configure
    loading cache ./config.cache
    checking for gcc… gcc
    checking whether the C compiler (gcc ) works… yes
    checking whether the C compiler (gcc ) is a cross-compiler… no
    checking whether we are using GNU C… yes
    checking whether gcc accepts -g… yes
    configure: error: can not find install-sh or install.sh in ./src ./src/.. ./src/../..
    admiral arpspoof #

    Can you post a full src version of the arpspoof

    • create a blank file install-sh or install.sh in src dir.

      alternatively, if your distro has repo, look for dsniff suite (in case or rhel/fedora).

      good luck

  • ulubatli 4 years ago

    How do you attach the alfa wireless adaptor to the monitor of the netbook :)?

  • I wish they had this for windows now i have to use a vbox

  • fatal 3 years ago

    bash: ./sslstrip.py: Permission denied

    whats up with this?

  • filip 1 year ago

    My internet instantly shutsoff on the target ip…

  • J0hnnyBr@v0 4 years ago

    Check out my script which makes this hack super easy….

    http://sourceforge.net/projects/easy-creds/