Jump to content

Sslstrip2 not working. Please help.


shamwow

Recommended Posts

i installed sslstrip2 and dns2proxy and python 2.7.3
and i did the ip forwarding with the recommend iptables as it shows in the manual

echo 1 > /proc/sys/net/ipv4/ip_forward

iptables-t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port 9000

iptables-t nat -A PREROUTING -p udp --destination-port 53 -j REDIRECT --to-port 53

after running python sslstrip.py -l 9000 and arp -i wlan0 target_ip gateway_ip and python dns2proxy.py
i went to my test machine and try hotmail.com; google.com; facebook.com ....
sslstrip2 is changing the url but the webpage wont load. can anyone tell me how to fix this?

these are the links that i downloaded from.
https://github.com/singe/sslstrip2
https://github.com/singe/dns2proxy

Link to comment
Share on other sites

The point is that, at least Firefox honors the HSTS header, meaning that now that it has accessed Facebook over https once, it will continue to do so for the next year or so immediately, without first going the HTTP route (sslstrip works by MITM-ing the machine on its initial connection, which always defaults to using HTTP. When the initial connection goes straight for HTTPS, it can't do anything).

Link to comment
Share on other sites

The point is that, at least Firefox honors the HSTS header, meaning that now that it has accessed Facebook over https once, it will continue to do so for the next year or so immediately, without first going the HTTP route (sslstrip works by MITM-ing the machine on its initial connection, which always defaults to using HTTP. When the initial connection goes straight for HTTPS, it can't do anything).

can you try sslstrip2 and see what is causing the problem?

Link to comment
Share on other sites

Just use wireshark to look at the traffic from your target when it tries to access the website. It should tell you everything you need to know.

Link to comment
Share on other sites

wireshark didn't tell me anything. thanks for nothing.

Instead of becoming aggressive try some self-reflecting. Maybe it didn't tell you anything because you don't know how to work it, or maybe there wasn't a connection

Link to comment
Share on other sites

If wireshark tells you nothing it means you don't know how to read it or your target machine isn't sending data in a way that you can capture/see it. In which case it's also obvious why sslstrip isn't working because I can assure you that if wireshark doesn't see it, that's because it isn't there.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...