sablefoxx Posted March 26, 2010 Share Posted March 26, 2010 It appears there is a bit of java script that Newegg uses to upgrade users to HTTPS, even when SSL Strip removes the HTTPS links from the site. Go ahead and try it. Hopefully more sites will follow Newegg's example of actually having decent security. :-P Quote Link to comment Share on other sites More sharing options...
digip Posted March 26, 2010 Share Posted March 26, 2010 Thats a good thing but if you are MITM'ing sites, I imagine you can filter that sort of thing out as well. You would just have to write it into the code to do a sort of proxy filtering effect over the intercepted pages, sort of like how corporations use Squid to block ads and flash. Maybe even add en ettercap filter in place to work along side everything and change all scripts to some other code all together. You pretty much have full control over the content once you are in the middle of whats coming over the pipe. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.