SSLStrip

From charlesreid1

A tool from Moxie Marlinspike

Also see SSLSniff

Overview

Source Code

Github: https://github.com/moxie0/sslstrip

Moxie's page: https://moxie.org/software/sslstrip/

Installing

On Kali: 

$ apt-get install sslstrip

On other: 

$ git clone https://github.com/moxie0/sslstrip.git
$ cd sslstrip
$ python setup.py build && python setup.py install

Getting Help

$ sslstrip -h

Important tags: 

-w - specifies log file

-p - logs only SSL posts

-a - logs all SSL and HTTP traffic

-l port - port to listen on

Basic Usage

SSLStrip listens for traffic on a particular port, so we need to use Iptables to listen for HTTPS traffic and forward it selectively to SSLStrip. We'll assume SSLStrip is running on port 6666. 

$ iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 6666

Now any HTTPS connections made to it are turned into HTTP connections, and their encryption layer stripped. SSLStrip also keeps track of which requests have been stripped, so that when the HTTP response from the sheep is received, it is forwarded along to the server as an HTTPS response.

Also make sure your machine forwards packets it receives: 

$ echo "1" > /proc/sys/net/ipv4/ip_forward

Now run sslstrip: 

$ sslstrip -l 6666

Flags


Defcon.png
monkey in the middle attacks
in which an attacker tricks two parties into thinking they're communicating with each other, but both are communicating with the attacker.

MITM

Wireless Attacks: MITM/Wireless

Wired Attacks: MITM/Wired


Layer 1 and 2 MITM Attacks:

MITM/Layer 1 and 2

Network Tap: MITM/Wired/Network Tap

Evil Twin Attack: Evil Twin  · MITM/Evil Twin


Layer 3 and 4 MITM Attacks:

MITM/Layer 3 and 4

Traffic Sniffing: MITM/Sniffing

ARP Poisoning: MITM/ARP Poisoning

Traffic Injection/Modification: MITM/Traffic Injection

DNS Attacks: MITM/DNS  · Bettercap/Failed DNS Spoofing Attack  · Bettercap/Failed DNS Spoofing Attack 2

DHCP Attacks: MITM/DHCP

WPAD MITM Attack: MITM/WPAD

Port Stealing: MITM/Port Stealing

Rushing Attack: MITM/Rushing Attack

Attacking HTTPS: MITM/HTTPS


Layer 5 MITM Attacks:

Session Hijacking: MITM/Session Hijacking


Toolz:

Ettercap  · Bettercap  · MITMf  · EvilFOCA

Wireshark  · Aircrack

Dsniff  · Arpspoof  · Dnsspoof

SSLSniff  · SSLStrip  · Frankencert

Driftnet  · Karma


MITM Labs: {{MITMLabs}}


Category:MITM  · Category:Attacks  · Category:Kali Attack Layers

Template:MITMLabs  · Template:MITMFlag

Flags  · Template:MITMFlag  · e





Retrieved from "https://charlesreid1.com/w/index.php?title=SSLStrip&oldid=21976"