Jump to content

How To Dns Spoof Https Links


fellowgeek

Recommended Posts

Hello,

I created a bunch of phishing pages for Facebook, twitter, and gmail to test out

the dns-spoof function on Mark IV pineapple.

The pages work fine and Pineapple will redirect the traffic to the fake login pages

that I created however, when the victims type in a HTTPS address like https://twitter.com the

redirect won't work and a connection error message would show up in browser,

or sometimes they will see the real site's HTTPS version.

Is there anyway around this? can I redirect HTTPS links to a landing page as well?

Thanks

Link to comment
Share on other sites

I don't get it would a computer still not look up a dns server regardles if it's encrypted or not? or are there ssl dns servers for https?

can you try clearing the cash and restarting the device your testing with? on android I use 1tap cleaner.

what I found is if you visit a site with an android device it saves the ip and skips the lookup after that.

Link to comment
Share on other sites

I notices most of the browsers i.e. Safari and Chrome are switching to HTTPS version most of the time, I'll try experimenting with

SSL Strip, thanks for the replys, would anyone be interested in my fake login pages when they are done ?

I'm interested in your fake login pages... Send me a message when you got them all done :D

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...