Uploaded by Hak5Darren on Oct 20, 2009
This time on the show Darren's having a little man-in-the-middle fun with a demonstration os SSLStrip, an epic tool for removing that pesky encryption from your victims browsing session. Plus Laser Cat Modding
Moxie Marlinspike's SSLStrip, released at Blackhat/DEFCON this year, is a tool that transparently hijacks HTTP traffic and redirects HTTPS links to look-alike HTTP links. While this description barely scratches the surface, Darren's segment takes a closer look including a pracitcal demonstration of a man-in-the-middle attack using arpspoof and a little luck with remote-exploit's BackTrack 4 penetration testing distribution.
Category:
Tags:
License:
Standard YouTube License
Link to this comment:
Uploader Comments (Hak5Darren)
Top Comments
-
Darren is a pretty cool guy. He has drinks in his hair and doesn't afraid of anything.
1 year ago 6
Video Responses
All Comments (75)
-
11:23 Haha what?
-
Whenever I am arp spoofing it kills my internet on the target machine. (Not sure about other machines) How do I fix this.
-
Can anyone please tell if Ettercap is a legit (=safe) tool for pentesting? Would it be possible to cause any harm with it beyond your knowledge, like spreading viruses or worms in a otherwise "clean" environment?
In other words, is it itself a safe/clean application to use professionally?
I am referring to normal usage, without implementing any harmful code myself, where it only works as a sniffer.
-
best hack tools at SOFTWAREFORYOU(dot)TK
-
@theoriginalfatdonkey fuck you i love it when they talkz
-
0:00
-
@acdcgreatestbandever Well it's not really a downside. It isn't that hard the connect to protected wifi, because you can crack WPA and WEP passwords. Also a Man-in-the-Middle attacks would be smarter by manually sniffing out the info rather than a Trojan, because most people are smart enough to have an antivirus, so it would be detected easily.
-
i couldn't help but notice your shirt.
i happen to like LDAP! but, you know. openldap's implementation.
-
Holy fuck, SKIP ALL THAT BULLSHIT AT THE START. Like, the first 7 minutes. Thanks.
25 videos
Season 5- 6:19Darren Kitchen on BASIC, Hak5 1022.1by Hak5Darren2,389 views
- 7:29Shannon Morse on Javascript with CodeAcademy, H...by Hak5Darren1,568 views
- 10:23Learning Python, VBS Scripts and Trivia! Hak5 1...by Hak5Darren979 views
- 5:21Network monitoring in Linux with lsofby Hak5Darren3,997 views
- 17:06Hak5 - Virtual Private Networks using your Goog...by Hak5Darren44,482 views
- 0:39How to listen to cell phones with a police scannerby trixwagen66,227 views
- 6:26SSL Man in the Middle Attack using SSLStripby InfoSecInstitute5,408 views
- 4:34sslstripping passwords Backtrack 5 - hacking ho...by hidekipooj25,285 views
- 8:49SSL Man in the MIddle Attack using SSL Strip - ...by InfoSecInstitute5,037 views
- 5:38MITM attack, HTTPSby maestr0poland14,803 views
- 9:29Hacking HTTPSby CodeBr4k3R5,714 views
- 2:08hack wifiby hackersk20081,503,170 views
- 36:42Hak5 - Metasploit 101 with Mubixby Hak5Darren45,210 views
- 2:15sslstrip and ettercapby Canitank11,846 views
- 45:10Hak5 - Linux Hacking the Zipit, SMS Scripting G...by Hak5Darren18,403 views
- 22:40Hak5 - School firewall evasion, secure traffic ...by Hak5Darren34,660 views
- 26:51Encrypt your entire hard drive! - Hak5by Hak5Darren18,258 views
- 0:51How to Hack and Spy through anyone's Webcamby HouseholdHacker2,395,142 views
- 23:53Hak5 - Episode 406 - Packet Sniffing 101, Socia...by Hak5Darren11,430 views
- 5:23Hacking the CVS digital cameraby Hak5Darren17,368 views
soco + packets = score
wEBOTLPOPN 2 years ago
mmmmmm packets
Hak5Darren 2 years ago 5
LOL DArren your SExy and you crack me up - OOP
optimaloptimusprimus 2 years ago
damn skippy
Hak5Darren 2 years ago
Win, I just learned a new word for less than/greater than.. Wakka.. :)
n00oob 2 years ago
wakka wakka wakka wakka *power pellet sound*
Hak5Darren 2 years ago