Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • May 29, 2020 at 8:40 pm #38508
    Hassan Aswad
    Participant

    Hello im using kali linux 2020.2 and i wanted to use sslstrip to bypass HTTPS. But i cant install the tool and use it like showing in the course. I do some research, but I have found that SSLSTRIP was removed from the distro. I also read that this vulnerability has been patched on practically all websites now. If that true , are there any other tools to replace it. Thank you

    May 30, 2020 at 3:51 am #38526
    Diego PérezDiego Pérez
    Participant

    Hi Hassan!
    This tool is still doing it’s job but there are more websites using hsts protection which is different and difficult to bypass. I would recommend to use custom kali prvided by Zaid because it has sslstrip already in it among other changes and the attack is working. In the official kali release this will not work. If you want to install it and try it anyway download it and follow the instructions from official github repository:

    https://github.com/moxie0/sslstrip

    Hope it helps!
    Diego

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.
Privacy Overview
ZSecurity logo featuring a stylized red letter Z

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.

Strictly Necessary Cookies

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

3rd Party Cookies

This website uses Google Analytics and Linkedin to collect anonymous information such as the number of visitors to the site, and the most popular pages.

Keeping these cookies enabled helps us to improve our website.

Powered by  GDPR Cookie Compliance