- This topic has 2 replies, 2 voices, and was last updated 4 years, 1 month ago by .
- You must be logged in to reply to this topic.
FYI, the new Kali2020 vm provided didn’t have sslstrip installed.
To install I had to do download and unzip/untar sslstrip from https://moxie.org/software/sslstrip/ and follow the install instructions.
running sslstrip then failed due to missing twisted-web module.
to fix had to do
pip install Twisted.
sslstrip then runs but warns about missing the service_identity module.
which you can fix by installing via
pip install service_identity
One thing, I had to downgrade Twisted to 18.9.0(pip install Twisted==18.9.0) otherwise sslstrip gets an error like the following when you hit an https website:
File “/usr/local/lib/python2.7/dist-packages/twisted/web/http_headers.py”, line 40, in _sanitizeLinearWhitespace
return b’ ‘.join(headerComponent.splitlines())
exceptions.AttributeError: ‘int’ object has no attribute ‘splitlines’
I still see some other errors
e.g. Request.write called on a request after Request.finish was called.
but it still seems bring up the winzip site correctly via http instead of https
Hi Dege,
Yes, this is true, you’re not the only one that you get these errors when you try the downgrade, but it will work if you followed everything correctly as shown in the lecture, so if it’s downgrading winzip.com from HTTPS to HTTP, then you can ignore the error message that you get and proceed normally with the course.
Not a member yet? Register now
Are you a member? Login now
All of our courses include:
✔ Lifetime, unlimited access to course materials & training videos.
✔ Verifiable certificate of completion from zSecurity, signed by the course instructor, Zaid.
✔ Get answers from our Support Team within a maximum of 15 hours.
✔ Unlimited Updates.
Get free 1 month VIP membership per course with:
✔ Live mentorship and Q&A session with the course instructor, Zaid.
✔ Instant support from community members through our private discord channel.
✔ Daily updates with the latest tutorials & news in the hacking world.
✔ Daily resources like CTFs, bug bounty programs, onion services and more!
✔ Access our VIP community & connect with like-minded people.
✔ Discounts on other zSecurity products and services.
This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.
Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.
This website uses Google Analytics and Linkedin to collect anonymous information such as the number of visitors to the site, and the most popular pages.
Keeping this cookies enabled helps us to improve our website.
Please enable Strictly Necessary Cookies first so that we can save your preferences!