sslstrip - Scott Helme

How HSTS could have largely mitigated the Polish DNS hijacking attack

Last week, there was large scale cyber attack on Polish internet users that specifically targeted online banking activities. By modifying the DNS settings on victim's routers, the attackers were able to redirect users to malicious servers and intercept online banking traffic to modify and...

Free Post

karma

The WiFi Pineapple - Using Karma and SSLstrip to MiTM secure connections

Using Karma coupled with SSLstrip the WiFi Pineapple can easily give you access to traffic that would normally have been encrypted. Even if a site enforces HTTPS you can still find yourself browsing an insecure version of the site. Introduction In a few recent...

Free Post

config

The WiFi Pineapple - Setup and introduction

The WiFi Pineapple has been a hot topic lately and I've managed to get my hands on one. Touted as a 'favourite among penetration testers and security enthusiasts' there's no arguing this little box packs a lot of punch. Whilst some criticise the capabilities...