Collaborate Disseminate
I am currently working on a home "forensic" lab and I have set up an OPNsense-based transparent proxy (squid) to intercept and analyze HTTPS traffic coming from a Windows 11 client. I can successfully decrypt traffic using TLS ke… Continue reading How to capture fully decrypted HTTPS traffic in a transparent proxy setup without TLS key logs?
Let’s consider host A and host B with network interfaces connected directly with an ethernet cable. It can also be assumed that the physical security of this cable is okay.
Neither host supports routing from other interfaces on the host.
I… Continue reading Is a physical private network directly connected between hosts secure?
For example, if I were to send a post request to a /login route, would that payload already be encrypted if the API URL is HTTPS? As far as I know, if it is in HTTPS, then the payload is already encrypted.
Another example is sending a post… Continue reading Do I need a 2nd layer of encryption through secured site (HTTPS/SSL/TLS)?
I am looking at this vulnerability: CVE-2019-0231
The NVD description says:
Handling of the close_notify SSL/TLS message does not lead to a
connection closure, leading the server to retain the socket opened and
to have the client potentia… Continue reading why CVE-2019-0231 is critical? [closed]
I would like to use mitm transparent mode with wireguard
So I tried this
mitmweb –mode wireguard 0 (3.656s) < 19:02:30
[19:02:32.784] ——… Continue reading mitmproxy with wireguard to log all network traffic on my machine (arch linux): SERVAIL Recursive question
I know that TLS MitM can get HTTP/S traffic decrypted when using certificates.
I’m wondering if it has the ability to decrypt the Apple Airdrop protocol as well as it doesn’t go through a server and uses WiFi Direct to create a peer-to-pee… Continue reading Can a TLS MITM decrypt Apple Airdrop files?
I’m working on a very limited client (based on Poky from the Yocto Project), on which I want to redirect all http/https requests to my other machine on the same network. I have nftables available on the target and verified this, by success… Continue reading Redirect all outgoing http and https requests to Burp using nftables
I have a small intranet, in which I have complete control over its deployment. I can even do MiTM, packet inspection/injection etc.
There is a router and then there are 5 users behind the routers.
The issue I am facing is that I cannot ide… Continue reading Identifying user behind a router [closed]
It’s a well-known secret that inkjet ink is being kept at artificially high prices, which is why many opt to forego ‘genuine’ manufacturer cartridges and get third-party ones instead. Many …read more Continue reading Man-in-the-Middle PCB Unlocks HP Ink Cartridges
As I learn more about cyber security, I’m seeing a greater number of ambiguous acronyms (within the same field of cyber security) for various attacks. I was confused when reading articles that refer to MITM in differing manners. Besides th… Continue reading MITM/MTM – Vague Acronym Meanings in Cyber Security [closed]