Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
10 views1 page

HTTP & Https Both Available

The document describes a vulnerability in a website due to incomplete SSL protection, which could allow attackers to intercept user credentials through Man-in-the-Middle attacks. It outlines steps to verify the vulnerability by checking if the site redirects from HTTPS to HTTP. To remediate the issue, it suggests checking for an expired SSL certificate or implementing HSTS.

Uploaded by

piyushcyber9
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
10 views1 page

HTTP & Https Both Available

The document describes a vulnerability in a website due to incomplete SSL protection, which could allow attackers to intercept user credentials through Man-in-the-Middle attacks. It outlines steps to verify the vulnerability by checking if the site redirects from HTTPS to HTTP. To remediate the issue, it suggests checking for an expired SSL certificate or implementing HSTS.

Uploaded by

piyushcyber9
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 1

Vulnerability - HTTP and HTTPS available

-----------------------------------------------------------------------------------
-----------------------------------------------------------

Description:

The website is not fully protected by an SSL certificate. This could allow an
attacker in a Man-in-the-Middle position to obtain usernames and passwords of users
visiting the site.
-----------------------------------------------------------------------------------
-----------------------------------------------------------

Steps:

1 - Go to the domain https://abc.com


2 - Copy the URL and open an incognito tab
3 - Paste the URL and remove the "S" from the domain and check if it redirects it
to http
4 - If it opens on http, it is vulnerable.
-----------------------------------------------------------------------------------
-----------------------------------------------------------

Impact:

If a user were to visit this page from a public or shared network (eg, office,
airport, library, etc) and login an account, a malicious user on the same network
would be able to obtain that user's username and password by conducting a Man-in-
the-Middle attack using Wireshark.

This would allow the malicious user complete access to the user's account.
-----------------------------------------------------------------------------------
-----------------------------------------------------------

Remediation:

Check for an expired SSL certificate or implement HSTS.


-----------------------------------------------------------------------------------
-----------------------------------------------------------

You might also like