OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: [Full-disclosure] Hijack SSL with a Man-In-The-Middle Attack

From: Larry Seltzer (larrylarryseltzer.com)
Date: Tue Nov 23 2010 - 15:53:38 CST


I've made a lot of money writing papers inspired by Moxie's work, so I can
relate.

-----Original Message-----
From: full-disclosure-bounceslists.grok.org.uk
[mailto:full-disclosure-bounceslists.grok.org.uk] On Behalf Of Eyeballing
Weev
Sent: Tuesday, November 23, 2010 4:44 PM
To: full-disclosurelists.grok.org.uk
Subject: Re: [Full-disclosure] Hijack SSL with a Man-In-The-Middle Attack

LOL I guess the README in sslstrip was too hard for some people

On 11/23/2010 04:35 PM, Adam Behnke wrote:
> Hello pen testers, if you are interested in learning how to Hijack SSL
> with a Man-In-The-Middle attack, check out the latest InfoSec
> Institute article on the subject:
>
> http://resources.infosecinstitute.com/mitm-using-sslstrip/
>
> Our instructor covers how to perform the SSL attack, which tools you
> will need, how to configure them, and the technical details of how the
> attack works.
>
> This article is a follow up to our tutorial on Man-In-The-Middle
attacks:
>
> http://resources.infosecinstitute.com/video-man-in-the-middle-howto/
>
> I hope this is useful for you guys!
>
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/