Hello im using kali linux 2020.2 and i wanted to use sslstrip to bypass HTTPS. But i cant install the tool and use it like showing in the course. I do some research, but I have found that SSLSTRIP was removed from the distro. I also read that this vulnerability has been patched on practically all websites now. If that true , are there any other tools to replace it. Thank you
Hi Hassan! This tool is still doing it’s job but there are more websites using hsts protection which is different and difficult to bypass. I would recommend to use custom kali prvided by Zaid because it has sslstrip already in it among other changes and the attack is working. In the official kali release this will not work. If you want to install it and try it anyway download it and follow the instructions from official github repository:
Strictly Necessary Cookies
Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.
3rd Party Cookies
This website uses Google Analytics and Linkedin to collect anonymous information such as the number of visitors to the site, and the most popular pages.
Keeping this cookies enabled helps us to improve our website.
Please enable Strictly Necessary Cookies first so that we can save your preferences!