Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Secure Yahoo logins

From: Muhammad Faisal Rauf Danka <mfrd () attitudex com>
Date: Thu, 29 Aug 2002 13:02:53 -0700 (PDT)
You might want to have a look at:
Haaaang on snoopy, snoopy hang on. (SSL for fun and profit) by stealth
Phrack 57 (http://www.phrack.com/phrack/57/p57-0x0d)

And yes you can redirect traffic through DNS poisoning, it will work for all sort of to what i say (Impersonating Host) 
Attacks.

Like take this for example:

I have seen this practically that hotmail.com was redirected to a local webserver machine running fake hotmail page as 
default page, and action was directed towards a CGI that saved all the input and showed a page that hotmail is 
currently down. :)


Regards
--------
Muhammad Faisal Rauf Danka

Head of GemSEC / Chief Technology Officer
Gem Internet Services (Pvt) Ltd.
web: www.gem.net.pk
Key Id: 0x784B0202
Key Fingerprint: 6F8C EDCF 6C6E 06A5 48D7  6A20 C592 484B 
784B 0202

_____________________________________________________________
---------------------------
[ATTITUDEX.COM]
http://www.attitudex.com/
---------------------------

_____________________________________________________________
Promote your group and strengthen ties to your members with email () yourgroup org by Everyone.net  
http://www.everyone.net/?btn=tag
Previous By Date Next
Previous By Thread Next

Current thread: