[Video] How to: Snifff SSL / HTTPS (sslstrip)

[reeth]

if you do it on your wired network yes

[leroy]

Can anyone provide a "cleanup" routine for this?

So the attacker system is in same state as before.

Thanks
Leroy

[chasebadkids]

What exactly do you mean by a clean up? As far as I know, once you initiate sslstrip, youve basically authenticated ssh for the person connecting to whatever service they are getting to, once you are out of the picture, that connection is lost, the person would still have to re-authenticate with the server to get the SSL key they need in order to view the site

[m0j4h3d]

That was the great posting.

I have doubt

I dont find wlan0 in my lan.

Can i interchange, it will eth0

will it work???

sure it works .. know your network card name .. then start doing what you want to do
----------------

and thanks for the posting
===========

[Corleone]

I think what leroy means is putting iptables back to normal.
You can do this with the command iptables --flush

c

[Thunder-R]

Thanks a lot for sharing these info, and looking for more great videos.

[nivong]

You have some typo's in your code:

Code:

kate /etc/etter.conf

and

Code:

iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-ports 10000

thats all

[wizeazz]

Thanks for your answers guys!
respect.

[Dezio]

Thanks for the tut, I've tryed it and all work correctly.
I've just a question.. how can I "arpspoofing" the the entire lan? can I use something like this?

Code:

arpspoof -i wlan0 -t 192.168.*.* 192.168.1.1

[khianhui]

Thanks for the tut, I've tryed it and all work correctly.
I've just a question.. how can I "arpspoofing" the the entire lan? can I use something like this?

Code:

arpspoof -i wlan0 -t 192.168.*.* 192.168.1.1

you should find it out which is the broadcast address of your network. For example 192.168.1.255 instead of 192.168.1.*.