Results 1 to 3 of 3

Thread: password sniffing avoid Extended Validation sites

  1. #1
    Just burned his ISO
    Join Date
    Jun 2010
    Posts
    3

    Question password sniffing avoid Extended Validation sites

    sorry if this is in the wrong place

    I was wondering if there is a script that works with ettercap + sslstrip but avoids trying to sniff EV protected sites, since these usually give the end user a warning about a possible MITM attack

  2. #2
    Just burned his ISO
    Join Date
    Oct 2009
    Location
    Turkey
    Posts
    16

    Default Re: password sniffing avoid Extended Validation sites

    google for SSL rebinding
    CCNA-CCNP-CCSP-CEH-MCP(! ya ya in old good days there was mcp-winsock)
    may the big penguin rape you in your dreams if you abuse your knowledge

  3. #3
    Just burned his ISO
    Join Date
    Jun 2010
    Posts
    3

    Default Re: password sniffing avoid Extended Validation sites

    googled SSL rebinding, but cannot seem to find an example of SSL rebinding in action using a demo site, found explanations/theory of how it works but no examples

    if there is a way just to bypass EV protected sites I would be interested in that as well

Similar Threads

  1. Sickness - Password Sniffing with SSLStrip.
    By sickness in forum BackTrack Videos
    Replies: 35
    Last Post: 09-17-2010, 01:16 PM
  2. Sickness - Password Sniffing Reloaded.
    By sickness in forum BackTrack Videos
    Replies: 8
    Last Post: 02-06-2010, 01:12 PM
  3. Strange Password Sniffing Problem
    By TheVinMeister in forum OLD Newbie Area
    Replies: 1
    Last Post: 07-30-2008, 01:48 PM
  4. Sniffing MSN password on a network.
    By Dissident85 in forum OLD Newbie Area
    Replies: 6
    Last Post: 07-03-2008, 10:15 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •