SSL Stripping - SY0-601 CompTIA Security+ : 1.3
HTML-код
- Опубликовано: 2 янв 2021
- Security+ Training Course Index: professormesser.link/sy0601
Professor Messer’s Course Notes: professormesser.link/601cn
Professor Messer's Practice Exams: professormesser.link/601ytpe
Discount Exam Vouchers: professormesser.com/vouchers/
Professor Messer Recommended Study Materials: professormesser.link/601rs
- - - - -
An attacker might be able to perform an HTTP downgrade attack to view traffic that you assumed was encrypted. In this video, you’ll learn about SSL stripping and how attackers can use on-path attacks to manipulate the SSL negotiation process.
- - - - -
Subscribe to get the latest videos: professormesser.link/yt
Calendar of live events: professormesser.com/calendar/
Frequently Asked Questions: professormesser.link/faq
FOLLOW PROFESSOR MESSER:
Professor Messer website: professormesser.com/
Discord chat: professormesser.com/discord
Twitter: professormesser.com/twitter
Facebook: professormesser.com/facebook
Instagram: professormesser.com/instagram
LinkedIn: professormesser.com/linkedin - Наука
man i am enjoying this series soo much, you break everything down soo well
Ikr
Best explanation of mitm attack. The breakdown can easily stick to memory any time I see the term SSL Stripping
Awesome and un-parallel content , nothing better than this for any beginner , intermediate person and even many who think they have advanced skills might learn lot here . Thanks lot for sharing .God bless your channel .You should hit 1 million Subscribers , I wish .
Excellent content, as always! Thank you
Really nice explanation. Thank you!
Great explanation at the end of this attack!
you are a LEGEND Sir
Thank you for clarifying
Wow security is dope glad A+ didn’t burn me out 😂
Man… Network+ burned me out bad. So far studying for this one is bringing me back to life
Great information, thank you
So essentially the key difference between a downgrade attack and SSL stripping, is that the attacker has to sit in the middle when performing SSL stripping?
Yes
This is so good to me lol I just know ima be great!!!
instead of these protocols being deprecated, why not just sundown them all together if they pose risk on both personal and enterprise level?
there's no way to do that without a single entity owning all the technology.
People still have the protocols and can install them on their devices as they please for multiple reasons from the device not being able to run higher encryption or they want lower encryption for nefarious means.