this post was submitted on 06 Jul 2024
842 points (100.0% liked)

196

16087 readers
1930 users here now

Be sure to follow the rule before you head out.

Rule: You must post before you leave.

^other^ ^rules^

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
qaz
[email protected]
842
thanks lain (rule) (lemmy.blahaj.zone)
submitted 1 month ago by [email protected] to c/[email protected]
90 comments fedilink hide all child comments
 

Source

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 17 points 1 month ago (1 children)

That kind of ssl interception would normally be quite visible without your client device having the pineapples cert in your devices trust store, or am I wrong?

[โ€“] [email protected] 8 points 1 month ago* (last edited 1 month ago)

I'm sure a lot has changed in 10 years ago so this won't be relevant today, but back when I was last playing with this, sslstrip was the tool I was using on the pineapple to enable SSL mitm attacks - https://github.com/moxie0/sslstrip

I'd imagine there are new techniques to counteract new defenses - this stuff is always cat & mouse