Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • Sslstrip 2

    Încărcat de

    django001
    253 vizualizări21 pagini
    hack ssl strip

    Titlu original

    sslstrip2

    Drepturi de autor

    © Attribution Non-Commercial (BY-NC)

    Formate disponibile

    PDF, TXT sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    hack ssl strip

    Drepturi de autor:

    Attribution Non-Commercial (BY-NC)
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    253 vizualizări21 pagini

    Sslstrip 2

    Încărcat de

    django001
    hack ssl strip

    Drepturi de autor:

    Attribution Non-Commercial (BY-NC)
    Descărcați ca PDF, TXT sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 21

    SSLSLrlp Man-ln-1he-Mlddle

    lSA 364 vulnerablllLy uemonsLrauon


    !osh lranklln
    8urns Ml[anovlch
    Creg oLhler
    lnLroducuon
    SSLSLrlp - Man-ln-Lhe-mlddle (Ml1M) auack
    agalnsL SSL
    lools vlcum lnLo uslng lnsecure P11
    connecuons lnsLead of P11S wlLh SSL
    Slmple Lo seLup and use
    ueveloped by Moxle Marllnsplke,
    demonsLraLed aL 8lack PaL uC 2009
    SSL
    SSL sLands for Secure SockeLs Layer
    LncrypLs many klnds of lnLerneL Lramc above
    Lhe 1ransporL Layer
    Lnables secure Lransacuons onllne
    A ma[or backbone of e-commerce
    Pas acLually been succeeded
    by 1ransporL Layer SecurlLy
    (1LS) - SSL ls sull used ln
    conversauon
    Pow SSL Works
    SSL/1LS uses a handshake process Lo esLabllsh
    an encrypLed sesslon
    CllenL requesLs SSL - !"#$%&'( *+ &,' -.#'"&
    Server & cllenL work ouL whlch encrypuon
    proLocols Lo use
    1he handshake process ls valldaLed by a dlglLal
    cerucaLe from Lhe server
    Why Auacklng SSL ls lneecuve
    1 8ecause of Lhe server's dlglLal cerucaLe, Lhe
    SSL handshake process ls dlmculL or
    lmposslble Lo Ml1M wlLhouL alerung Lhe user
    2 Cnce Lhe SSL sesslon ls esLabllshed, Lhe
    connecuon ls proLecLed wlLh up Lo 236 blL
    encrypuon, 128 blL ls Lhe defaulL
    3 1hls could Lake over a Lrllllon years Lo crack!
    8ouom Llne
    Cnce a user requesLs SSL:
    /01 2341 !5 678
    Cuesuon:
    We can'L Ml1M Lhe SSL handshake
    We can'L crack Lhe encrypuon aer Lhe
    sesslon ls esLabllshed
    5#"-' 559 #: :'-;<'= ,>? (> ?' %@%-A #&B
    Answer:
    C' (>"D&8
    We can'L auack SSL, buL we can avold lL
    eople don'L Lype P11S://example.com/" ln
    Lhe address bar, Lhey cllck on secure llnks
    C,%& #E >;< F#-$G "'F'< :%? %" 0//75 .#"AB
    Pow SSLSLrlp Works
    SSLSLrlp monlLors a cllenL/server P11
    connecuon and does Lwo Lhlngs:
    1. revenLs Lhe cllenL from seelng secure P11S
    llnks
    2. revenLs Lhe server from forclng a secure P11S
    connecuon
    P11S Llnk SLrlpplng
    1. SSLSLrlp sLrlps ouL" P11S llnks from
    unencrypLed web pages, replaces Lhem wlLh
    P11 llnks
    2. SSLSLrlp sends Lhe alLered pages Lo Lhe cllenL
    H.#'"& "'F'< :'': %" 0//75 .#"A &> -.#-A >"= >".+
    &,' ;"'"-<+I&'( 0//7 F'<:#>"
    lnLercepL Server P11S 8edlrecL
    Some servers redlrecL P11 Lo P11S uslng a 301
    Moved message Lo force a secure connecuon
    1. SSLSLrlp lnLercepLs Lhls message - /,' -.#'"& "'F'<
    :'': #&8
    2. SSLSLrlp creaLes a valld SSL sesslon wlLh Lhe server
    on Lhe cllenL's behalf
    /,' ->""'-$>" *'&?''" &,' -.#'"& %"( 5595&<#I #:
    :$.. ;"'"-<+I&'(
    normal SSL Connecuon
    SSL Connecuon wlLh SSLSLrlp
    LxLra Sneaky leaLure
    MosL web browsers dlsplay a padlock" lcon
    when Lhe connecuon ls secured wlLh SSL
    SSLSLrlp fakes Lhls by dlsplaylng Lhe padlock"
    as Lhe favlcon for Lhe page
    1hls can fool vlcums lnLo Lhlnklng Lhey are on
    a secure page
    normal Secure age
    lnsecure age wlLh SSLSLrlp
    J'G>":&<%$>" $G'8
    Mlugauons
    8esL defense ls 3C3K1L155:
    8e sure you're connecLed
    wlLh P11S!
    8ookmark lmporLanL pages
    wlLh P11S, and use Lhe bookmarks
    1ype ln P11S llnks manually
    A browser addon or exLenslon could force Lhe
    use of P11S from Lhe cllenL slde
    Mlugauons: Proxy
    PlsLory roxy (Proxy) ls an academlc
    concepL/Lool LhaL defends agalnsL SSLSLrlp
    8ullds a basellne usage prole from your
    browser hlsLory
    keeps Lrack of slLes where you've used P11S
    ln Lhe pasL
    When SSLSLrlp Lrles Lo geL you Lo cllck a fake
    P11 llnk, Proxy closes Lhe connecuon and
    warns you
    Concluslon
    SSL/1LS ls a sLrong proLocol when
    lmplemenLed correcLly
    SSLSLrlp ls very sneaky and very eecuve
    users should be acuLely aware of wheLher or
    noL Lhelr connecuons are encrypLed
    5/3M 53N18
    8eferences
    hup://www.LhoughLcrlme.org/soware/sslsLrlp/
    SSL 8lC 2246 ls avallable aL hup://www.leu.org/rfc/rfc2246.LxL).
    hup://LechneL.mlcroso.com/en-us/llbrary/cc78147628WS.1029.aspx
    hup://www.verlslgn.com/ssl/ssl-lnformauon-cenLer/how-ssl-securlLy-works/
    roLoLype SysLem Lo roLecL agalnsL SSL-SLrlpplng Auacks
    hups://llrlas.kuleuven.be/blLsLream/123436789/273134/1/submlsslon.pdf
    hup://www.scrlbd.com/doc/17219610/SSLSLrlp-on-WlndowsWhlLe-aper
    Craphlc from sllde 3 - hup://buslnesslnLerneLconsulLanL.com/Cnllne_SecurlLy/Lcommerce_SecurlLy
    Craphlc from sllde 6 hup://www.blogfordemocracy.org/2010/04/Lhls_sunks.hLml
    Craphlc from sllde 14
    hup://Lech.blorge.com/SLrucLure:20/2009/02/20/secure-webslLe-Lechnology-under-new-hacklng-
    LhreaL/
    Craphlc from sllde 18
    hup://sslservercerucaLe.org/
    Craphlc from sllde 20
    hup://1.bp.blogspoL.com/_pLe2xC66nwg/Sl-!21!-P8l/AAAAAAAAu9?/MCgCuvlcnc/s1600-h/
    safeLy_rsL.[pg

    S-ar putea să vă placă și