Today we will show you, how to convert HTTPS requests into basic HTTP
requests with SSL strip. In simple words, SSL strip is a type of man in the middle attack technique by which a website secured with HTTPS is downgraded to HTTP. or any traffic generating requests.
SSL (Secure socket layer) is a transport layer cryptographic security technique implemented by most websites today , use this cryptographic encryption technique to secure online credentials of users login ID and password but SECURITY IS A MYTH. In SSL Strip, all the traffic coming from the victim's machine is routed towards a proxy which is created by the attacker.That allows attackers to manipulate
internet traffic and capture data such as usernames and passwords and it works by converting HTTPS requests into basic HTTP requests.
Let's explain with technical words. We have the victim, the attacker which are running SSL strip and web server on apache.
Arpspoof convinces a host that our MAC address is the routers MAC address, and the target begins to send us all its network traffic.
The kernel forwards everything along except for traffic destined to port 80, which it redirects to listenPort (10000, for example).
that forces a victim's browser into communicating with an adversary in plain-text over HTTP, and the adversary proxies the modified content from an HTTPS server.
To do this, SSLStrip is "stripping" https:// URLs and turning them into http:// URLs .
This Video is for Educational Purpose Only, what you do is your responsibility and Black Hat
Ethical Hacking or anyone involved, is not held accounted for if any damage for any reason occurs .
FRAMEBEATZ - SMOOTH R&B TRAP BEAT | No Copyright Trap
Download for Free our Conky Theme
Support our work on Patreon: