alphan3

Thank you Cooper for such a detailed explanation! Now I feel much more on the ground. :)

I understand the principle and theory of a TRUE HTTPS MITM attack (not SSLstrip's degrading from HTTPS to HTTP). However does Pineapple have any components to perform true HTTPS attacks, so that even if you personally type HTTPS into a web site URL, the tool can still decrypt your traffic? Let's assume you can NOT steal the web site's credentials. I don't need much detail but just wanted to verify the capability. Thanks in advance for any clarification....Deeply appreciated!!