Results 1 to 3 of 3

Thread: SSLstrip

  1. #1
    Member
    Join Date
    May 2011
    Location
    Portugal
    Posts
    84

    Default SSLstrip

    Hello, i have a question...

    I saw a video on youtube and was reading backtrack tutorials and i found one interesting tutorial about sslstrip well i'm not trying attempting to steal any e-mail or facebook password or whatever, just trying to get more and more knowledge about backtrack it self. So i saw this tutorial and think it is interesting redirecting https to http and i know that ppl who use it for evil purposes should/could go to jail.

    Well i'm trying to make it on my own network. I'm using my desktop and my laptop and both are connected to my router and i will try to "attack" through the laptop, my question is after i use all the commands, successfully redirect the https to http and close all consoles is the IPTABLE still changed? i mean it will still redirect the port 80 traffic to the port where sslstrip is working? Since it is my own network there is no problem because i already know my passwords, im just concerned if this will prevent me to ever use https again.

    Thank you

  2. #2
    Member
    Join Date
    May 2011
    Location
    Portugal
    Posts
    84

    Default Re: SSLstrip

    I mean if i use: « echo "1"> /proc/sys/net/ipv4/ip_forward » the ipforwarding is enabled and « echo "0"> /proc/sys/net/ipv4/ip_forward » is disable but the rest of the commands change any table or something? thanks

  3. #3
    Junior Member M00kaw's Avatar
    Join Date
    Oct 2010
    Location
    127.0.0.1
    Posts
    47

    Default Re: SSLstrip

    either reboot your attacking machine, or this should do it:

    iptables --flush
    iptables --table nat --flush
    iptables --delete-chain
    iptables --table nat --delete-chain

    you can throw it in a document and run it as a script like this:

    #!/bin/bash
    iptables --flush &&
    iptables --table nat --flush &&
    iptables --delete-chain &&
    iptables --table nat --delete-chain &&
    echo 'ip-tables flushed'

Similar Threads

  1. Parsing SSLStrip with definitions.sslstrip in easy-cred
    By ericmilam in forum BackTrack 5 Experts Section
    Replies: 3
    Last Post: 06-28-2011, 09:40 PM
  2. Parsing SSLStrip with definitions.sslstrip in easy-cred
    By ericmilam in forum BackTrack 5 Beginners Section
    Replies: 0
    Last Post: 05-31-2011, 08:39 PM
  3. sslstrip help
    By rogue040 in forum OLD BackTrack 4 Software Related Issues
    Replies: 0
    Last Post: 03-29-2010, 02:42 AM
  4. sslstrip v0.7
    By Mr-Protocol in forum Tool Requests
    Replies: 2
    Last Post: 01-18-2010, 06:33 AM
  5. sslstrip
    By muminrz in forum OLD BT4 Feature Requests
    Replies: 1
    Last Post: 02-28-2009, 03:25 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •