Hijacking Web 2.0 Sites with SSLstrip Hands-on Training - PowerPoint PPT Presentation

About This Presentation
Title:

Hijacking Web 2.0 Sites with SSLstrip Hands-on Training

Description:

Facebook. Attacker: Evil Proxy. in the. Middle. To Internet. HTTP. HTTPS. Ways to Get in the Middle ... Configuring Proxy Server in the Browser. ARP Poisoning ... – PowerPoint PPT presentation

Number of Views:51
Avg rating:3.0/5.0
Slides: 13
Provided by: samsc
Category:

less

Transcript and Presenter's Notes

Title: Hijacking Web 2.0 Sites with SSLstrip Hands-on Training


1
Hijacking Web 2.0 Sites with SSLstripHands-on
Training
2
Contact
  • Sam Bowne
  • Computer Networking and Information Technology
  • City College San Francisco
  • Email sbowne_at_ccsf.edu
  • Web samsclass.info

3
The Problem
  • HTTP Page with an HTTPS Logon Button

4
Proxy Changes HTTPS to HTTP
To Internet
HTTPS
Attacker Evil Proxyin the Middle
HTTP
TargetUsingFacebook
5
Ways to Get in the Middle
6
Physical Insertion in a Wired Network
To Internet
Attacker
Target
7
Configuring Proxy Server in the Browser
8
ARP Poisoning
  • Redirects Traffic at Layer 2
  • Sends a lot of false ARP packets on the LAN
  • Can be easily detected
  • DeCaffienateID by IronGeek
  • http//k78.sl.pt

9
ARP Request and Reply
  • Client wants to find Gateway
  • ARP Request Who has 192.168.2.1?
  • ARP Reply
  • MAC 00-30-bd-02-ed-7b has 192.168.2.1

ARP Request
ARP Reply
Client
Gateway
Facebook.com
10
ARP Poisoning
Attacker
ARP Replies I am the Gateway
Forwarded Altered Traffic
Traffic to Facebook
Client
Gateway
Facebook.com
11
Demonstration
12
Do it Yourself
  • You need a laptop with
  • Windows host OS
  • VMware Player or Workstation
  • Linux Virtual Machine (available on the USB Hard
    Drives in the room)
  • Follow the Handout
Write a Comment
User Comments (0)
About PowerShow.com