Jump to content

Does SSLstrip work on sites that don't have HSTS enabled


Recommended Posts


I have read that SSL strip only works on Internet Explorer, because it doesn't have the HSTS preloaded list. However it is possible for an SSL strip attack to work on Chrome and Firefox, if the website that is being attacked has not enabled HSTS. 


Link to comment
Share on other sites


This topic is now archived and is closed to further replies.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...