Haktuts-Hacking News

All About ethical hacking,hacking news hacker news,security news,privacy Issue,cyber crime,pentesting tools,open sources,cyber security, information security, technology news,how-to,Tips and tricks and dark web news

How to Encrypt the http port traffic from man-in-the-middle Attack

in: capturing https Encrypt-http-traffic kali linux MITM NSA NSA Spying Packet capturing Random SSH SSH Tunnel Tips & Tricks Tor-ip-Tables2
As all hacker and pentester know,how secure is http (port 80) protocol? .Anyone who have little knowledge of kali linux or any other packet capturing tool can make  dump a http traffic via single click.After dumping the data of network ,it will be easy for hackers and pentester to know all the incoming and outgoing traffic, like URL of website surfed,Login credential etc...

Forget about http (port 80),i want to know how secure is https (Port 443) protocol? is it really secured?.If really think,https is secured than Don't forget about NSA Spying.As per edward snowden leaked document,NSA spying the entire web even if site|Network is https protected.

Follow the below steps to encrypt the http port traffic from MITM attack

Requirement

  • Kali Linux
  • Tor-ip-Tables2
  • SSH_Tunnel

How To Encrypt The HTTP Port Traffic From MITM

1.Start a SSH Server on the localhost

 service ssh start

2.Now Go to directory of SSH Tunnel by command

cd ssh_tunnel
3.After Changing the directory to ssh_tunnel,Run the python script using command:

sudo python ssh_tunnel.py

4.Script prompt for the password to gain root access,Please enter the password of root user

5.Now Open the new terminal and change the current directory to toriptables2

cd /toriptables2
6.Start toriptables2 script using command given below:

sudo python toriptables2.py -l

7.Set your browser to use local socks port as shown in below image:
8.Now http traffic is encrypted with MITM attack

Proof Of Concept

1.To check weather http traffic is encrypted,Open the wireshark tool in kali linux using command:

wireshark
2.Now GUI mode of wireshark is open as shown in below image,select the interface and Click on start button
3.Now see the wireshark Captured session as shown in below image:

Have a look on Red highlighted line which shows all the traffic is encrypted.

Contributor:Rupert Edwards

0 comments:

Post a Comment

Newer Post Older Post Home
Powered by Blogger.

Labels

  • Ethical hacking course

Featured post

Free Ethical Hacking Tranning

Ethical hacking and pentesting from beginners to advance are given below: Introduction Hackers Hierarchy Hackers Keyword Virus Typ...

Popular Posts

  • How to secure android device from spying and location tracking
    Ever  puzzled   regarding  being snooped  on-line  by  the large    companies?  will  it raise associate  alarm in your head?  affirmative...
  • How To Unfriend All Facebook Friend In Single Click Using Firefox|Chrome|Opera Browser
    Unfriend all the facebook friend in single click is quite simple,just follow the given below : Steps to unfriend all the facebook friend...
  • CEH v9 : Certified Ethical Hacker V9 PDFs & Tools Download
    Download Certified Ethical Hacking ( CEHv9 ) PDF & Tools. This is a PDF & Tools collection of CEH | V9. Read to learn How to Hack ...
  • How to become admin of any facebook fan page (Hijack Facebook Fan Page)
    Hacking Any Facebook Page The latest bug in Social networking site facebook could allow attackers to  take over control of your Facebo...
  • Free Ethical Hacking Tranning
    Ethical hacking and pentesting from beginners to advance are given below: Introduction Hackers Hierarchy Hackers Keyword Virus Typ...
  • List of Top 20 Google dorks
    What is google hacking? Google hacking involves using advanced operators in the google search engine to locate the specific string of ...
  • How To Root Xiaomi Redmi Note 4 using android application
    How To Root Xiaomi Redmi Note 4 using android application Towel Root? 1). Download towel root 2). Install the application 3). Ru...
  • How to root all samsung device
    SAMSUNG DEVICES: 1. Root Samsung Galaxy S Duos S7562 a)  Samsung KIES b)  Rooting file 2. Root Samsung Gravity Q using one click me...
  • How To Use WhatsApp As A Search Engine And Wikipedia By Activating WhatsApp Bot
    Today, we are going to tell you about a WhatsApp bot Which is created to bring search engine-like feature to WhatsApp. This WhatsApp bo...
  • Run Windows 98, Linux, KolibriOS inside your web browser using javaScript And NodeJS
    With time, JavaScript engines have grown to become faster and more powerful than ever. Demonstrating the same, a coder has created an on...

About This Blog