1

Hijacking Web 2.0 Sites with SSLstrip and SlowLoris — Sam Bowne and RSnake at Defcon 17

Posted by Ken on March 19, 2011 in General Tech, Hacking |

Many Websites mix secure and insecure content on the same page, like Facebook. This makes it possible to steal all the data entered on such a page easily, using Moxie Marlinspike’s new SSLstrip tool.

SlowLoris is a new denial of service attack developed by RSnake.

Both exploits are explained and demonstrated.

Slides, handouts, and detailed instructions for these attacks are available at:
http://samsclass.info/defcon.html

1 Comment

  • Keith says:
    March 19, 2011 at 9:48 PM

    i like it Hijacking manner of weaving 2.0 Sites in the estimation of SSLstrip and SlowLoris — Sam Bowne and RSnake at Defcon 17 | I am G33K… it being so that im your rss reader

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Copyright © 2010-2012 I am G33K… All rights reserved.
This site is using the Desk Mess Mirrored theme, v2.0.2, from BuyNowShop.com.