EnglishFrenchSpanish

OnWorks favicon

sslsniff - Online in the Cloud

Run sslsniff in OnWorks free hosting provider over Ubuntu Online, Fedora Online, Windows online emulator or MAC OS online emulator

This is the command sslsniff that can be run in the OnWorks free hosting provider using one of our multiple free online workstations such as Ubuntu Online, Fedora Online, Windows online emulator or MAC OS online emulator

PROGRAM:

NAME


sslsniff - SSL/TLS man-in-the-middle attack tool

SYNOPSIS


sslsniff [options]

DESCRIPTION


This manual page documents briefly the sslsniff command.

sslsniff is designed to create man-in-the-middle (MITM) attacks for SSL/TLS connections,
and dynamically generates certs for the domains that are being accessed on the fly. The
new certificates are constructed in a certificate chain that is signed by any certificate
that is provided.
sslsniff also supports other attacks like null-prefix or OCSP attacks to achieve silent
interceptions of connections when possible.

OPTIONS


Modes:

-a Authority mode. Specify a certificate that will act as a CA.

-t Targeted mode. Specify a directory full of certificates to target.

Required options:

-c <file|directory>
File containing CA cert/key (authority mode) or directory containing a collection
of certs/keys (targeted mode)

-s <port>
Port to listen on for SSL interception.

-w <file>
File to log to

Optional options:

-u <updateLocation>
Location of any Firefox XML update files.

-m <certificateChain>
Location of any intermediary certificates.

-h <port>
Port to listen on for HTTP interception (required for fingerprinting).

-f <ff,ie,safari,opera>
Only intercept requests from the specified browser(s).

-d Deny OCSP requests for our certificates.

-p Only log HTTP POSTs

-e <url>
Intercept Mozilla Addon Updates

-j <sha256>
The sha256sum value of the addon to inject

NOTES


sslsniff works only on the FORWARD traffic (not on INPUT or OUTPUT).

EXAMPLES


To intercept traffic on port 8443, start sslsniff on a local port:

sslsniff -a -c /usr/share/sslsniff/certs/wildcard -s 4433 -w /tmp/sslsniff.log

and redirect traffic to this port using the iptables nat table:

iptables -t nat -A PREROUTING -p tcp --destination-port 8443 -j REDIRECT --to-ports
4433

Use sslsniff online using onworks.net services


Free Servers & Workstations

Download Windows & Linux apps

  • 1
    Eclipse Checkstyle Plug-in
    Eclipse Checkstyle Plug-in
    The Eclipse Checkstyle plug-in
    integrates the Checkstyle Java code
    auditor into the Eclipse IDE. The
    plug-in provides real-time feedback to
    the user about viol...
    Download Eclipse Checkstyle Plug-in
  • 2
    AstrOrzPlayer
    AstrOrzPlayer
    AstrOrz Player is a free media player
    software, part based on WMP and VLC. The
    player is in a minimalist style, with
    more than ten theme colors, and can also
    b...
    Download AstrOrzPlayer
  • 3
    movistartv
    movistartv
    Kodi Movistar+ TV es un ADDON para XBMC/
    Kodi que permite disponer de un
    decodificador de los servicios IPTV de
    Movistar integrado en uno de los
    mediacenters ma...
    Download movistartv
  • 4
    Code::Blocks
    Code::Blocks
    Code::Blocks is a free, open-source,
    cross-platform C, C++ and Fortran IDE
    built to meet the most demanding needs
    of its users. It is designed to be very
    extens...
    Download Code::Blocks
  • 5
    Amidst
    Amidst
    Amidst or Advanced Minecraft Interface
    and Data/Structure Tracking is a tool to
    display an overview of a Minecraft
    world, without actually creating it. It
    can ...
    Download Amidst
  • 6
    MSYS2
    MSYS2
    MSYS2 is a collection of tools and
    libraries providing you with an
    easy-to-use environment for building,
    installing and running native Windows
    software. It con...
    Download MSYS2
  • More »

Linux commands

Ad