Search the Community
Showing results for tags 'strip'.
After reading a good bit about sslstip, hsts and how hsts prevents sslstrip attacks, I am intrigued to know if mobile apps send and receive data over a secure https hsts connection. And if https with the hsts implementation is exploitable. So how would I go about seeing if for example, an app like facebook (because the facebook site implements hsts) uses hsts. Which tools would i need and what would i be looking for? Secondly are there any known hsts exploits in existence?, sorry if these are all nubish questions but I'm friarly knew to this whole area, links/reading material would be apprec
Hey guys! I am having a problem with running ssl strip. I am currently running the 3.0 firmware for the mark IV. I installed ssl strip into an external usb storage and I am able to run it,but it does not show any output. I have the infusion too,same thing. SOMETIMES it outputs information,I guess when it decides to run. It's not from the infusion I am sure,SSH-ing in and running ssl strip doesn't give any results either. Just a few hours ago it ran just fine for 5 minutes,I went to 3 different websites,logged in etc (one of them is facebook) and it was alright. And suddenly,it just stopped wor