Internet Archive's in-browser video player requires JavaScript to be enabled. It appears your browser does not have it turned on. Please see your browser settings for this feature.

How To | Perform MITM attack with SSLstrip on https

by: Black Hat Ethical Hacking

Publication date: 2018-06-24

Topics: Youtube, video, Science & Technology, Black Hat Ethical Hacking, SaintDruG, Ethical Hacking, Mr Robot, Black Hat, Kevin Mitnick, Snowden, ssl sniffing, sniffing traffic, hacking, man in the middle attack, mitm, https,

Hello Everyone, Today we will show you, how to convert HTTPS requests into basic HTTP requests with SSL strip. In simple words, SSL strip is a type of man in the middle attack technique by which a website secured with HTTPS is downgraded to HTTP. or any traffic generating requests. SSL (Secure socket layer) is a transport layer cryptographic security technique implemented by most websites today , use this cryptographic encryption technique to secure online credentials of users login ID and password but SECURITY IS A MYTH. In SSL Strip, all the traffic coming from the victim's machine is routed towards a proxy which is created by the attacker.That allows attackers to manipulate internet traffic and capture data such as usernames and passwords and it works by converting HTTPS requests into basic HTTP requests. Let's explain with technical words. We have the victim, the attacker which are running SSL strip and web server on apache. Arpspoof convinces a host that our MAC address is the routers MAC address, and the target begins to send us all its network traffic. The kernel forwards everything along except for traffic destined to port 80, which it redirects to listenPort (10000, for example). that forces a victim's browser into communicating with an adversary in plain-text over HTTP, and the adversary proxies the modified content from an HTTPS server. To do this, SSLStrip is "stripping" https:// URLs and turning them into http:// URLs . Disclaimer : This Video is for Educational Purpose Only, what you do is your responsibility and Black Hat Ethical Hacking or anyone involved, is not held accounted for if any damage for any reason occurs . Sound Track: ROYALTY FREE FRAMEBEATZ - SMOOTH R&B TRAP BEAT | No Copyright Trap https://www.youtube.com/watch?v=ZQPPQR5zxvA Download for Free our Conky Theme https://github.com/blackhatethicalhacking/howtoscanatargetblackhatstyle Support our work on Patreon: https://www.patreon.com/blackhatethicalhacking

Source: https://www.youtube.com/watch?v=LN2YGqLY0ss
Uploader: Black Hat Ethical Hacking