That’s really nice. I haven’t worked on that tool as of now, will see if I can research on it a bit understand if the working of these two tools use the same method to carry out this hack.
SSL strip does exactly what you described. The problem is there are websites now a days which follow the HSTS ( HTTP Strict Transport Security )protocol. This enables the website to load only in HTTPS version of it and that renders most of the SSL Striping attack useless.
Oh I didn’t use any dictionary to carry out the attack, I actually wrote a C++ program to print out the desired output which was similar to the registration id provided by the college and matched the default password setup.
Format of the username is readily available as you go through the documentation of the college’s website. They use these registration numbers to identify students. Various documents on these websites are filled with Registration details and the respective name of the students as well
I understand why you would want me to careful about the thing that I say, but then if I can’t say what I want to then that’s just sad.
Assange’s arrest is extremely controversial and I want to remain neutral regarding this as there is a lot of positives and negatives that is associated to him.
I really hope that it ain’t sarcasm. While I am not familiar with the details of the Manning incident, regarding Snowden he would have been stopped if they had kept a proper check regarding the offloading of data and the amount of files that he had downloaded.