Sniffing SSL Passwords (Wireless)

If you think https if secure, think again.

This time we will be showing a seamless sniffing attack, where the attacker injects the whole network using ARP poisoning to become the man-in-the-middle.

After poisoning the network, all SSL / https traffic is redirected to a normal http (port 10000) without the targets even noticing anything. To top it off we display a lock icon on the webpage to make it seem like a https page.

Check out the vid in high quality

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s