this post was submitted on 06 Jul 2024
858 points (100.0% liked)

196

16423 readers
1698 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

founded 1 year ago
MODERATORS
greembow@lemmy.blahaj.zone
moss@lemmy.blahaj.zone
moss@lemmy.world
queue@beehaw.org
funky_rodent@lemmy.blahaj.zone
PeachyMcPeachface@lemmy.blahaj.zone
threegnomes@lemmy.blahaj.zone
greembow@lemmy.world
remotelove@lemmy.ca
Roflmasterbigpimp@feddit.de
qaz@lemmy.world
A_Very_Big_Fan@lemm.ee
qaz@lemmy.blahaj.zone
qaz@lemmy.ca
A_Very_Big_Fan@lemmy.world
qaz@lemmy.dbzer0.com
Qaz@lemmy.ml
qaz@sh.itjust.works
qaz@lemmy.sdf.org
858
thanks lain (rule) (lemmy.blahaj.zone)
submitted 4 months ago by Interstellar_1@lemmy.blahaj.zone to c/196@lemmy.blahaj.zone
93 comments fedilink hide all child comments
 

Source

you are viewing a single comment's thread
view the rest of the comments
[โ€“] kahdbrixk@feddit.de 17 points 4 months ago (1 children)

That kind of ssl interception would normally be quite visible without your client device having the pineapples cert in your devices trust store, or am I wrong?

[โ€“] beveradb@lemm.ee 8 points 4 months ago* (last edited 4 months ago)

I'm sure a lot has changed in 10 years ago so this won't be relevant today, but back when I was last playing with this, sslstrip was the tool I was using on the pineapple to enable SSL mitm attacks - https://github.com/moxie0/sslstrip

I'd imagine there are new techniques to counteract new defenses - this stuff is always cat & mouse