HSC
Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
Text mode: access to the page content
Hervé Schauer Consultants
You are here: Home > Resources > Lectures > Monkey in the Middle Attacks against SSH and HTTPS
Go to: HSC Trainings
Search:  
Version française
   Services   
o Skills & Expertise
o Consulting
o ISO 27001 services
o Vulnerabilities monitoring
o Audit & Assessment
o Penetration tests
o Vunerability assessment (TSAR)
o Forensics
o ARJEL
o Training courses
o E-learning
   Conferences   
o Agenda
o Past events
o Tutorials
   Resources   
o Thematic index
o Tips
o Lectures
o Courses
o Articles
o Tools (download)
o Vulnerability watch
   Company   
o Hervé Schauer
o Team
o Job opportunities
o Credentials
o History
o Partnerships
o Associations
   Press and
 communication
 
 
o HSC Newsletter
o Press review
o Press releases
o Publications
   Contacts   
o How to reach us
o Specific inquiries
o Directions to our office
o Hotels near our office
|>|Monkey in the Middle Attacks against SSH and HTTPS  
> Access to the content HTML Beginning of the presentation  
> Description Description of man-in-the-middle attacks against SSH and SSL, as used by the dsniff tool.  
> Context & Dates Talk made during JRES on 12 December 2001, and at the EFE seminar on 23 January 2002.
 
> Author Denis Ducamp  
> Type 35 slides [ French - HTML ]  
> Abstract &
Table of content
Flyleaf
Introduction
dsniff, la boite à outils
Dug Song
sshmitm
webmitm
sshow
dsniff
Les autres outils
Les bibliothèques
Pourquoi ça marche ?
SSHv1
SSHv2
HTTPS
Les signes d'une attaque ?
SSH
HTTPS
HTTPS (mauvais certificat)
HTTPS (autorité non reconnue)
Comment se protéger ?
SSH
Ce qui ne marche pas contre sshmitm
HTTPS
Ce qui ne marche pas contre webmitm
Les analyses de trafic
L'analyse passive de trafic
Analyse de l'authentification
Analyse de la connexion
Analyse des mots de passe
Analyse passive de SSL
Conclusion
Références  
> Related documents
themeMonkey-in-the-Middle
[Presentation]  Monkey in the middle attacks against SSH and HTTPS [6 February 2001 - French]
[Theme]  SSH (Secure SHell)
[Theme]  SSL (Secure Socket Layer)
> Copyright © 2001, Hervé Schauer Consultants, all rights reserved.

 

Last modified on 17 April 2002 at 17:35:55 CET - webmaster@hsc.fr
Information on this server - © 1989-2010 Hervé Schauer Consultants