Thread replies: 34
Thread images: 3
Thread images: 3
File: httpspic.jpg (5KB, 299x168px) Image search:
[Google]
5KB, 299x168px
Anyone know of a method to monitor HTTPS traffic, Ive tried different SSL strippers but none work and are all out dated. Would be awesome if someone could point me in the right direction, ive googled it 100 times and got nothing substantial. Thanks heaps in advanced!!
>>
>>60868213
...
>>
File: anonymous le hacktivist fais.png (43KB, 300x300px) Image search:
[Google]
43KB, 300x300px
Come on I know one of you hackers knows the answer.
>>
>>60868213
MITM is your only option at intercepting and decrypting SSL traffic. And now go. Shoo shoo. Be a skid somewhere else.
>>
>>60868213
This is bait, fuck off.
>>
>>60868213
>>60868250
Hello CIA, this is Anon.
Sent =)
>>
>>60868213
You need to access your router. Use iptables to forward port 443 to port 80. This will turn the HTTPS traffic into regular HTTP traffic which can be intercepted trivially. Don't tell anyone you heard it from us. -Anonymous
>>
>>60868342
how do I access my router to do this? allow me to phrase this as a challenge with a vague insult and a meme.
>>
>>60868354
You need a gallium-galinium-core-processor to actually do this. There's some info on the marianna's trench web, but I'd recommend staying away from that place.
>>
File: 1470282071268.jpg (23KB, 640x559px) Image search:
[Google]
23KB, 640x559px
>>60868213
Buy a quantum computer at your local electronics store or Radioshack and you'll be able to do it easily
>>
First rule of /g/:
If you can't find some piece of software you want, roll your own and pass it along.
I hate pot jokes.
>>
You guys at /g/ are cool I'm enjoying this board af.
>>
>>60868213
Are you really that retarded?
How're you going to handle so much entropy?
Do you even know what entropy I speak of?
>>
>>60868250
It's pretty easy. All you have to do is invent a mathematical formula that can take a product of 2 primes, and return those 2 primes.
e.g. If I put in the number 91, the formula should give me 7 and 13.
Good luck!
>>
>>60868213
>Would be awesome if someone could point me in the right direction, ive googled it 100 times and got nothing substantial.
>>60868250
>Come on I know one of you hackers knows the answer.
Install Gentoo.
"We" can't really help you until you prove yourself. Yes, it is a pain in the ass. But "we" can't waste our time helping someone who is nothing more than a filthy casual.
Once you have installed Gentoo, generate proof of installation (images of installation logs). Then post in the "Battlestations General" thread (/bst/). Of course you will need to post with a trip to verify who you are. Then we'll make contact and set you up with the appropriate IRC info.
Good luck. Don't feel too bad if you can't complete the task...most cannot.
One last thing, don't summon us again.
>>
>>60868213
Man, kids out on summer break already? Learn how MITM works, otherwise go download sub7 and be a leet haxor.
>>
>>60868706
How big are the numbers? Can't you just have a precomputed list of primes and iterate throught them to find first that divides without a remainder?
You could go quite far with GPUs. Say one has 1000 GPUs with 4096 cores each. That's 4096000 cores. Each processes a million primes in a second, so you can do test 4096 000 000 000 primes per second (4096 billions).
>>
Back in the days as a script kiddie I used a tool called sslstrip I doubt it works nowadays.
>>
>>60868853
The prime numbers used for encryption are around 2^1000 for one, and 2^5000 for the other.
The amount prime numbers under a number n is roughly n/ln(n). So that means there are around 10^297 prime numbers under 2^1000.
I didn't bother with 2^5000, but it's definitely exponentially higher.
>>
>>60868213
Hi Theresa
>>
>>60868964
Holy shit, my sides!
>>
>>60868853
>>60868960
Oh, and don't forget you have to test every combination of primes. So you'll have to go through every prime number with one prime, then every prime number with the next prime. So you'll have to check n^2 combinations, n being the number of total primes.
>>
>>60868853
How can one person be so stupid?
>>
Real advice: you won't break SSL. Best you can do is trick your targets into not using it.
>>
>>60869004
I bet you can't even make an ELF file with a hex editor, lol
>>
>>60868342
Question. If you do this and the target is using a modern, up to date browser like FF and Chrome, will the browser notify the user it's connecting in an insecure way? Also for websites that enforce SSL now, wouldn't this prevent reaching it? Like, trying to access Google could be a good way of knowing if someone is doing this in the network.
>>
>>60869089
>Lol gosh yeah fukkin rekt rite buddies?
Pathetic worm.
>>
>>60868342
This is how I accessed my employees bank details and fined them for skiving off on my dime
10/10 advice
>>
>>60868251
this. pretty obvious.
>>
>>60869101
yes, it wouldn't work.
the only way is MITM
where you act as the server and send the user's data to the server, you receive the server data and send it to the user
>>
>>60868514
where are you from?
>>
>>60868354
If you're on the network a router is generating, there's usually a configuration page at one of 192.168.{0,1}.1. if not, look up docs for the specific model.
>>
>>60868342
this is plain stupid, most servers will redirect http to https again, so he will be infinitely redirected to the same page
>>
>>60868213
MITM and you have to install your own cerifiicate on the victim's computer.
Thread posts: 34
Thread images: 3
Thread images: 3