DEF CON 17: Hijacking web 2.0 sites with SSLstrip

Speaker: Sam Bowne Instructor

Many Websites mix secure and insecure content on the same page, like Facebook. This makes it possible to steal all the data entered on such a page easily, using Moxie Marlinspike’s new SSLstrip tool.

First I will give a brief explanation and demonstration of the technique, and then I will help audience members set up the attack themselves on their own laptops.

Detailed instructions and all required software will be provided. Audience members should bring a laptop computer to participate in the hands-on training.

Main category

Information security & security management



Be surprised

I know what I'm looking for

Related videos