Does SSLstrip work on sites that don't have HSTS enabled

By DrStangeLove
May 13, 2021 in Questions

Followers 0

Recommended Posts

DrStangeLove

Posted May 13, 2021

- Share

Posted May 13, 2021

Hi,

I have read that SSL strip only works on Internet Explorer, because it doesn't have the HSTS preloaded list. However it is possible for an SSL strip attack to work on Chrome and Firefox, if the website that is being attacked has not enabled HSTS.

Thanks!

Quote

Link to comment

Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

× Pasted as rich text. Paste as plain text instead

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

Insert image from URL

Followers 0

Go to topic listing

Recently Browsing 0 members
- No registered users viewing this page.

Sign In

Does SSLstrip work on sites that don't have HSTS enabled

Recommended Posts

DrStangeLove

Link to comment

Share on other sites

Join the conversation

Recently Browsing 0 members

Browse

Activity