Just been doing a little reading after running in to problems using sslstrip against gmail...


It seems that the big boys are using a strict https policy supported by FF4 and Chrome (but not IE, obviously lol) which effectively renders sslstrip useless these days.

Should it not be possible to create an ettercap filter to strip the header before the victim should receive it?