1 / 8

Attack on HTTPS using dsniff

Witness a cybersecurity expert's demo on attacking HTTPS using dsniff. Learn how an attacker initiates DNS spoofing, creates a fake digital certificate, and gains full access to HTTPS data during a MITM attack. Follow the step-by-step process as a user unknowingly accesses their account on Hotmail, showcasing the dangers of such vulnerabilities.

rgraham
Télécharger la présentation

Attack on HTTPS using dsniff

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Attack on HTTPS using dsniff By Oleg Kolesnikov ok@cc.gatech.edu

  2. Attacker starts DNS Spoofer

  3. Attacker generates a fake Digital Certificate and starts MITM daemon

  4. User tries to log on to https://www.hotmail.com

  5. Attack on HTTPS: DNS is Spoofed

  6. User Adds Certificate

  7. User Accesses Account on Hotmail

  8. Attack on HTTPS: Attacker gains Full Access to HTTPS Data

More Related