{"id":479124,"date":"2023-08-09T10:01:33","date_gmt":"2023-08-09T10:01:33","guid":{"rendered":""},"modified":"2023-09-05T11:18:13","modified_gmt":"2023-09-05T11:18:13","slug":"ssl-stripping-attack","status":"publish","type":"wiki","link":"https:\/\/oneproxy.pro\/in\/wiki\/ssl-stripping-attack\/","title":{"rendered":"\u090f\u0938\u090f\u0938\u090f\u0932 \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u093e"},"content":{"rendered":"<p>SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0905\u091f\u0948\u0915 \u090f\u0915 \u0938\u0941\u0930\u0915\u094d\u0937\u093e \u0909\u0932\u094d\u0932\u0902\u0918\u0928 \u0915\u094b \u0938\u0902\u0926\u0930\u094d\u092d\u093f\u0924 \u0915\u0930\u0924\u093e \u0939\u0948, \u091c\u0939\u093e\u0902 \u0939\u092e\u0932\u093e\u0935\u0930 \u092a\u0940\u0921\u093c\u093f\u0924 \u0915\u0947 \u0915\u0928\u0947\u0915\u094d\u0936\u0928 \u0915\u094b HTTPS \u0938\u0947 HTTP \u092e\u0947\u0902 \u0921\u093e\u0909\u0928\u0917\u094d\u0930\u0947\u0921 \u0915\u0930 \u0926\u0947\u0924\u093e \u0939\u0948\u0964 \u0910\u0938\u093e \u0915\u0930\u0915\u0947, \u0939\u092e\u0932\u093e\u0935\u0930 \u0909\u0938 \u0921\u0947\u091f\u093e \u0915\u094b \u0907\u0902\u091f\u0930\u0938\u0947\u092a\u094d\u091f, \u092a\u0922\u093c \u092f\u093e \u0938\u0902\u0936\u094b\u0927\u093f\u0924 \u0915\u0930 \u0938\u0915\u0924\u093e \u0939\u0948 \u091c\u093f\u0938\u0947 \u092a\u0940\u0921\u093c\u093f\u0924 \u0938\u0941\u0930\u0915\u094d\u0937\u093f\u0924 \u092e\u093e\u0928\u0924\u093e \u0939\u0948\u0964 \u092f\u0939 \u0909\u092a\u092f\u094b\u0917\u0915\u0930\u094d\u0924\u093e \u0915\u094b \u092f\u0939 \u091c\u093e\u0928\u0947 \u092c\u093f\u0928\u093e \u0939\u094b\u0924\u093e \u0939\u0948 \u0915\u093f \u0909\u0938\u0915\u0940 \u091c\u093e\u0928\u0915\u093e\u0930\u0940 \u0938\u0947 \u0938\u092e\u091d\u094c\u0924\u093e \u0915\u093f\u092f\u093e \u091c\u093e \u0930\u0939\u093e \u0939\u0948\u0964<\/p>\n<h2>\u090f\u0938\u090f\u0938\u090f\u0932 \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u0947 \u0915\u0940 \u0909\u0924\u094d\u092a\u0924\u094d\u0924\u093f \u0915\u093e \u0907\u0924\u093f\u0939\u093e\u0938<\/h2>\n<p>&quot;SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917&quot; \u0936\u092c\u094d\u0926 \u0915\u093e \u0907\u0938\u094d\u0924\u0947\u092e\u093e\u0932 \u0938\u092c\u0938\u0947 \u092a\u0939\u0932\u0947 2009 \u092e\u0947\u0902 \u092c\u094d\u0932\u0948\u0915 \u0939\u0948\u091f \u092c\u094d\u0930\u0940\u092b\u093f\u0902\u0917 \u0915\u0949\u0928\u094d\u092b\u094d\u0930\u0947\u0902\u0938 \u092e\u0947\u0902 \u092e\u094b\u0915\u094d\u0938\u0940 \u092e\u093e\u0930\u094d\u0932\u093f\u0928\u0938\u094d\u092a\u093e\u0907\u0915 \u0928\u093e\u092e\u0915 \u090f\u0915 \u0938\u0941\u0930\u0915\u094d\u0937\u093e \u0936\u094b\u0927\u0915\u0930\u094d\u0924\u093e \u0928\u0947 \u0915\u093f\u092f\u093e \u0925\u093e\u0964 \u092e\u093e\u0930\u094d\u0932\u093f\u0928\u0938\u094d\u092a\u093e\u0907\u0915 \u0928\u0947 \u0926\u093f\u0916\u093e\u092f\u093e \u0915\u093f \u0915\u0948\u0938\u0947 \u0938\u0941\u0930\u0915\u094d\u0937\u093f\u0924 HTTPS \u0915\u0928\u0947\u0915\u094d\u0936\u0928 \u0915\u094b \u0916\u0924\u0930\u0947 \u092e\u0947\u0902 \u0921\u093e\u0932\u0928\u0947 \u0915\u0947 \u0932\u093f\u090f \u0939\u092e\u0932\u093e \u0915\u093f\u092f\u093e \u091c\u093e \u0938\u0915\u0924\u093e \u0939\u0948\u0964 SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0909\u0928 \u0939\u092e\u0932\u094b\u0902 \u0915\u0940 \u0935\u094d\u092f\u093e\u092a\u0915 \u0936\u094d\u0930\u0947\u0923\u0940 \u0915\u093e \u0939\u093f\u0938\u094d\u0938\u093e \u0939\u0948 \u091c\u094b SSL\/TLS \u092a\u094d\u0930\u094b\u091f\u094b\u0915\u0949\u0932 \u0915\u0947 \u0915\u093e\u0930\u094d\u092f\u093e\u0928\u094d\u0935\u092f\u0928 \u092e\u0947\u0902 \u0915\u092e\u091c\u093c\u094b\u0930\u093f\u092f\u094b\u0902 \u0915\u093e \u092b\u093c\u093e\u092f\u0926\u093e \u0909\u0920\u093e\u0924\u0947 \u0939\u0948\u0902\u0964<\/p>\n<h2>SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u0947 \u0915\u0947 \u092c\u093e\u0930\u0947 \u092e\u0947\u0902 \u0935\u093f\u0938\u094d\u0924\u0943\u0924 \u091c\u093e\u0928\u0915\u093e\u0930\u0940<\/h2>\n<h3>\u090f\u0938\u090f\u0938\u090f\u0932 \u0914\u0930 \u0907\u0938\u0915\u093e \u092e\u0939\u0924\u094d\u0935<\/h3>\n<p>SSL (\u0938\u093f\u0915\u094d\u092f\u094b\u0930 \u0938\u0949\u0915\u0947\u091f \u0932\u0947\u092f\u0930) \u0928\u0947\u091f\u0935\u0930\u094d\u0915 \u0938\u0902\u091a\u093e\u0930 \u0915\u094b \u0938\u0941\u0930\u0915\u094d\u0937\u093f\u0924 \u0915\u0930\u0928\u0947 \u0915\u0947 \u0932\u093f\u090f \u090f\u0915 \u092e\u093e\u0928\u0915 \u092a\u094d\u0930\u094b\u091f\u094b\u0915\u0949\u0932 \u0939\u0948, \u091c\u093f\u0938\u0947 \u0905\u0915\u094d\u0938\u0930 \u0935\u0947\u092c \u092c\u094d\u0930\u093e\u0909\u091c\u093c\u0930 \u092e\u0947\u0902 HTTPS \u0915\u0947 \u0930\u0942\u092a \u092e\u0947\u0902 \u0932\u093e\u0917\u0942 \u0915\u093f\u092f\u093e \u091c\u093e\u0924\u093e \u0939\u0948\u0964 \u092f\u0939 \u0909\u092a\u092f\u094b\u0917\u0915\u0930\u094d\u0924\u093e \u0915\u0947 \u092c\u094d\u0930\u093e\u0909\u091c\u093c\u0930 \u0914\u0930 \u0938\u0930\u094d\u0935\u0930 \u0915\u0947 \u092c\u0940\u091a \u0921\u0947\u091f\u093e \u0915\u094b \u090f\u0928\u094d\u0915\u094d\u0930\u093f\u092a\u094d\u091f \u0915\u0930\u0924\u093e \u0939\u0948, \u091c\u093f\u0938\u0938\u0947 \u0917\u094b\u092a\u0928\u0940\u092f\u0924\u093e \u0914\u0930 \u0921\u0947\u091f\u093e \u0905\u0916\u0902\u0921\u0924\u093e \u0938\u0941\u0928\u093f\u0936\u094d\u091a\u093f\u0924 \u0939\u094b\u0924\u0940 \u0939\u0948\u0964<\/p>\n<h3>SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u093e \u0915\u0948\u0938\u0947 \u0915\u093f\u092f\u093e \u091c\u093e\u0924\u093e \u0939\u0948?<\/h3>\n<p>SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0905\u091f\u0948\u0915 \u0915\u094d\u0932\u093e\u0938\u093f\u0915 \u092e\u0948\u0928-\u0907\u0928-\u0926-\u092e\u093f\u0921\u0932 (MITM) \u0905\u091f\u0948\u0915 \u092b\u094d\u0930\u0947\u092e\u0935\u0930\u094d\u0915 \u0915\u0947 \u0905\u0902\u0924\u0930\u094d\u0917\u0924 \u0939\u094b\u0924\u093e \u0939\u0948\u0964 HTTPS \u0938\u0947 HTTP \u092a\u0930 \u0915\u0928\u0947\u0915\u094d\u0936\u0928 \u0915\u094b \u0921\u093e\u0909\u0928\u0917\u094d\u0930\u0947\u0921 \u0915\u0930\u0915\u0947, \u0939\u092e\u0932\u093e\u0935\u0930 \u0915\u093f\u0938\u0940 \u092d\u0940 \u092a\u0915\u094d\u0937 \u0915\u094b \u0928\u094b\u091f\u093f\u0938 \u0915\u093f\u090f \u092c\u093f\u0928\u093e \u0921\u0947\u091f\u093e \u0915\u094b \u092a\u0922\u093c \u092f\u093e \u0938\u0902\u0936\u094b\u0927\u093f\u0924 \u0915\u0930 \u0938\u0915\u0924\u093e \u0939\u0948\u0964 \u092f\u0939 \u0939\u092e\u0932\u093e \u0906\u092e \u0924\u094c\u0930 \u092a\u0930 \u0938\u093e\u0930\u094d\u0935\u091c\u0928\u093f\u0915 \u0935\u093e\u0908-\u092b\u093e\u0908 \u0928\u0947\u091f\u0935\u0930\u094d\u0915 \u0914\u0930 \u0905\u0928\u094d\u092f \u0935\u093e\u0924\u093e\u0935\u0930\u0923 \u0915\u094b \u0932\u0915\u094d\u0937\u093f\u0924 \u0915\u0930\u0924\u093e \u0939\u0948, \u091c\u0939\u093e\u0901 \u0939\u092e\u0932\u093e\u0935\u0930 \u091f\u094d\u0930\u0948\u092b\u093c\u093f\u0915 \u0915\u094b \u0906\u0938\u093e\u0928\u0940 \u0938\u0947 \u0930\u094b\u0915 \u0938\u0915\u0924\u093e \u0939\u0948\u0964<\/p>\n<h2>\u090f\u0938\u090f\u0938\u090f\u0932 \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u0947 \u0915\u0940 \u0906\u0902\u0924\u0930\u093f\u0915 \u0938\u0902\u0930\u091a\u0928\u093e<\/h2>\n<ol>\n<li><strong>\u0939\u092e\u0932\u093e\u0935\u0930 \u0915\u0940 \u0938\u094d\u0925\u093f\u0924\u093f:<\/strong> \u0939\u092e\u0932\u093e\u0935\u0930 \u0915\u094b \u091f\u094d\u0930\u0948\u092b\u093f\u0915 \u0915\u094b \u0930\u094b\u0915\u0928\u0947 \u0915\u0940 \u0938\u094d\u0925\u093f\u0924\u093f \u092e\u0947\u0902 \u0939\u094b\u0928\u093e \u091a\u093e\u0939\u093f\u090f, \u091c\u093f\u0938\u0947 \u0906\u092e\u0924\u094c\u0930 \u092a\u0930 \u0909\u0938\u0940 \u0928\u0947\u091f\u0935\u0930\u094d\u0915 \u092a\u0930 \u092e\u094c\u091c\u0942\u0926 \u0930\u0939\u0915\u0930 \u092f\u093e ARP \u0938\u094d\u092a\u0942\u092b\u093f\u0902\u0917 \u091c\u0948\u0938\u0940 \u0924\u0915\u0928\u0940\u0915\u094b\u0902 \u0915\u093e \u0909\u092a\u092f\u094b\u0917 \u0915\u0930\u0915\u0947 \u0939\u093e\u0938\u093f\u0932 \u0915\u093f\u092f\u093e \u091c\u093e\u0924\u093e \u0939\u0948\u0964<\/li>\n<li><strong>HTTP \u092a\u0930 \u0921\u093e\u0909\u0928\u0917\u094d\u0930\u0947\u0921 \u0915\u0930\u0947\u0902:<\/strong> \u0939\u092e\u0932\u093e\u0935\u0930 \u0938\u0941\u0930\u0915\u094d\u0937\u093f\u0924 HTTPS \u0932\u093f\u0902\u0915 \u0915\u094b \u0938\u0902\u0936\u094b\u0927\u093f\u0924 \u0915\u0930\u0924\u093e \u0939\u0948 \u0914\u0930 \u0909\u0928\u094d\u0939\u0947\u0902 HTTP \u0932\u093f\u0902\u0915 \u0938\u0947 \u092c\u0926\u0932 \u0926\u0947\u0924\u093e \u0939\u0948\u0964<\/li>\n<li><strong>\u0921\u0947\u091f\u093e \u0905\u0935\u0930\u094b\u0927\u0928:<\/strong> HTTP \u0915\u0947 \u092e\u093e\u0927\u094d\u092f\u092e \u0938\u0947 \u092d\u0947\u091c\u0940 \u0917\u0908 \u0938\u092d\u0940 \u091c\u093e\u0928\u0915\u093e\u0930\u0940 \u0939\u092e\u0932\u093e\u0935\u0930 \u0926\u094d\u0935\u093e\u0930\u093e \u092a\u0922\u093c\u0940 \u091c\u093e \u0938\u0915\u0924\u0940 \u0939\u0948 \u0924\u0925\u093e \u0915\u092d\u0940-\u0915\u092d\u0940 \u0938\u0902\u0936\u094b\u0927\u093f\u0924 \u092d\u0940 \u0915\u0940 \u091c\u093e \u0938\u0915\u0924\u0940 \u0939\u0948\u0964<\/li>\n<li><strong>\u092a\u0941\u0928\u0903 \u090f\u0928\u094d\u0915\u094d\u0930\u093f\u092a\u094d\u0936\u0928 (\u0935\u0948\u0915\u0932\u094d\u092a\u093f\u0915):<\/strong> \u0915\u0941\u091b \u0909\u0928\u094d\u0928\u0924 \u0939\u092e\u0932\u094b\u0902 \u092e\u0947\u0902, \u0939\u092e\u0932\u093e\u0935\u0930 \u0907\u091a\u094d\u091b\u093f\u0924 \u0938\u0930\u094d\u0935\u0930 \u092a\u0930 \u0921\u0947\u091f\u093e \u092d\u0947\u091c\u0928\u0947 \u0938\u0947 \u092a\u0939\u0932\u0947 \u0909\u0938\u0947 \u092a\u0941\u0928\u0903 \u090f\u0928\u094d\u0915\u094d\u0930\u093f\u092a\u094d\u091f \u0915\u0930 \u0938\u0915\u0924\u093e \u0939\u0948\u0964<\/li>\n<\/ol>\n<h2>\u090f\u0938\u090f\u0938\u090f\u0932 \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u0947 \u0915\u0940 \u092a\u094d\u0930\u092e\u0941\u0916 \u0935\u093f\u0936\u0947\u0937\u0924\u093e\u0913\u0902 \u0915\u093e \u0935\u093f\u0936\u094d\u0932\u0947\u0937\u0923<\/h2>\n<ul>\n<li><strong>\u0917\u0941\u092a\u094d\u0924:<\/strong> \u092a\u094d\u0930\u093e\u092f\u0903 \u092a\u0940\u0921\u093c\u093f\u0924\u094b\u0902 \u0926\u094d\u0935\u093e\u0930\u093e \u0907\u0938 \u092a\u0930 \u0927\u094d\u092f\u093e\u0928 \u0928\u0939\u0940\u0902 \u0926\u093f\u092f\u093e \u091c\u093e\u0924\u093e\u0964<\/li>\n<li><strong>\u0905\u0938\u0930\u0926\u093e\u0930:<\/strong> \u092e\u0939\u0924\u094d\u0935\u092a\u0942\u0930\u094d\u0923 \u092e\u093e\u0924\u094d\u0930\u093e \u092e\u0947\u0902 \u0938\u0902\u0935\u0947\u0926\u0928\u0936\u0940\u0932 \u091c\u093e\u0928\u0915\u093e\u0930\u0940 \u0915\u094b \u0930\u094b\u0915\u0928\u0947 \u092e\u0947\u0902 \u0938\u0915\u094d\u0937\u092e\u0964<\/li>\n<li><strong>\u0938\u094d\u0935\u0924\u0902\u0924\u094d\u0930 \u092e\u0902\u091a:<\/strong> \u092f\u0939 \u0915\u093f\u0938\u0940 \u092d\u0940 \u0938\u093f\u0938\u094d\u091f\u092e \u092a\u0930 \u0915\u093f\u092f\u093e \u091c\u093e \u0938\u0915\u0924\u093e \u0939\u0948 \u091c\u094b \u0938\u0941\u0930\u0915\u094d\u0937\u093e \u0915\u0947 \u0932\u093f\u090f SSL\/TLS \u092a\u0930 \u0928\u093f\u0930\u094d\u092d\u0930 \u0915\u0930\u0924\u093e \u0939\u0948\u0964<\/li>\n<\/ul>\n<h2>SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u0947 \u0915\u0947 \u092a\u094d\u0930\u0915\u093e\u0930<\/h2>\n<table>\n<thead>\n<tr>\n<th>\u092a\u094d\u0930\u0915\u093e\u0930<\/th>\n<th>\u0935\u093f\u0935\u0930\u0923<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>\u092c\u0947\u0938\u093f\u0915 SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917<\/td>\n<td>HTTPS \u0938\u0947 HTTP \u092e\u0947\u0902 \u0938\u0930\u0932 \u0921\u093e\u0909\u0928\u0917\u094d\u0930\u0947\u0921<\/td>\n<\/tr>\n<tr>\n<td>\u0935\u093f\u0938\u094d\u0924\u093e\u0930\u093f\u0924 SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917<\/td>\n<td>\u0907\u0938\u092e\u0947\u0902 \u092a\u0941\u0928\u0903 \u090f\u0928\u094d\u0915\u094d\u0930\u093f\u092a\u094d\u0936\u0928 \u0914\u0930 \u0905\u0928\u094d\u092f \u091c\u091f\u093f\u0932\u0924\u093e\u090f\u0902 \u0936\u093e\u092e\u093f\u0932 \u0939\u0948\u0902<\/td>\n<\/tr>\n<tr>\n<td>\u092e\u094b\u092c\u093e\u0907\u0932 SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917<\/td>\n<td>\u0935\u093f\u0936\u0947\u0937 \u0930\u0942\u092a \u0938\u0947 \u092e\u094b\u092c\u093e\u0907\u0932 \u0921\u093f\u0935\u093e\u0907\u0938 \u0915\u094b \u0932\u0915\u094d\u0937\u094d\u092f \u0915\u0930\u0928\u093e<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0905\u091f\u0948\u0915 \u0915\u093e \u0909\u092a\u092f\u094b\u0917 \u0915\u0930\u0928\u0947 \u0915\u0947 \u0924\u0930\u0940\u0915\u0947, \u0938\u092e\u0938\u094d\u092f\u093e\u090f\u0902 \u0914\u0930 \u0938\u092e\u093e\u0927\u093e\u0928<\/h2>\n<h3>\u0909\u092a\u092f\u094b\u0917<\/h3>\n<ul>\n<li><strong>\u0905\u0935\u0948\u0927 \u0917\u0924\u093f\u0935\u093f\u0927\u093f\u092f\u093e\u0902:<\/strong> \u0935\u094d\u092f\u0915\u094d\u0924\u093f\u0917\u0924 \u0914\u0930 \u0935\u093f\u0924\u094d\u0924\u0940\u092f \u091c\u093e\u0928\u0915\u093e\u0930\u0940 \u091a\u0941\u0930\u093e\u0928\u093e\u0964<\/li>\n<li><strong>\u0928\u093f\u0917\u092e \u0938\u0947 \u0938\u0902\u092c\u0928\u094d\u0927\u093f\u0924 \u091c\u093e\u0938\u0942\u0938\u0940:<\/strong> \u0917\u094b\u092a\u0928\u0940\u092f \u091c\u093e\u0928\u0915\u093e\u0930\u0940 \u0915\u094b \u0930\u094b\u0915\u0928\u093e.<\/li>\n<\/ul>\n<h3>\u0938\u092e\u0938\u094d\u092f\u093e\u090f\u0901 \u0914\u0930 \u0938\u092e\u093e\u0927\u093e\u0928<\/h3>\n<ul>\n<li><strong>\u0938\u0902\u0915\u091f:<\/strong> \u0909\u092a\u092f\u094b\u0917\u0915\u0930\u094d\u0924\u093e \u091c\u094b\u0916\u093f\u092e\u094b\u0902 \u0938\u0947 \u0905\u0928\u092d\u093f\u091c\u094d\u091e \u0939\u0948\u0902\u0964<br \/>\n<strong>\u0938\u092e\u093e\u0927\u093e\u0928:<\/strong> \u0909\u092a\u092f\u094b\u0917\u0915\u0930\u094d\u0924\u093e\u0913\u0902 \u0915\u094b \u0936\u093f\u0915\u094d\u0937\u093f\u0924 \u0915\u0930\u0947\u0902, \u0914\u0930 \u092c\u094d\u0930\u093e\u0909\u091c\u093c\u0930\u094b\u0902 \u092e\u0947\u0902 \u092a\u0948\u0921\u0932\u0949\u0915 \u0906\u0907\u0915\u0928 \u091c\u0948\u0938\u0947 \u0938\u0941\u0930\u0915\u094d\u0937\u093e \u0938\u0902\u0915\u0947\u0924\u0915\u094b\u0902 \u0915\u0947 \u0909\u092a\u092f\u094b\u0917 \u0915\u094b \u092c\u0922\u093c\u093e\u0935\u093e \u0926\u0947\u0902\u0964<\/li>\n<li><strong>\u0938\u0902\u0915\u091f:<\/strong> HTTPS \u0915\u093e \u0905\u092a\u094d\u0930\u092d\u093e\u0935\u0940 \u0915\u093e\u0930\u094d\u092f\u093e\u0928\u094d\u0935\u092f\u0928.<br \/>\n<strong>\u0938\u092e\u093e\u0927\u093e\u0928:<\/strong> HTTP \u0938\u0916\u094d\u0924 \u092a\u0930\u093f\u0935\u0939\u0928 \u0938\u0941\u0930\u0915\u094d\u0937\u093e (HSTS) \u0914\u0930 \u0905\u0928\u094d\u092f \u092e\u091c\u092c\u0942\u0924 \u0938\u0941\u0930\u0915\u094d\u0937\u093e \u0909\u092a\u093e\u092f\u094b\u0902 \u0915\u094b \u0932\u093e\u0917\u0942 \u0915\u0930\u0947\u0902\u0964<\/li>\n<\/ul>\n<h2>\u092e\u0941\u0916\u094d\u092f \u0935\u093f\u0936\u0947\u0937\u0924\u093e\u090f\u0901 \u0914\u0930 \u0938\u092e\u093e\u0928 \u0936\u092c\u094d\u0926\u094b\u0902 \u0915\u0947 \u0938\u093e\u0925 \u0924\u0941\u0932\u0928\u093e<\/h2>\n<table>\n<thead>\n<tr>\n<th>\u0905\u0935\u0927\u093f<\/th>\n<th>\u0935\u093f\u0936\u0947\u0937\u0924\u093e\u090f\u0901<\/th>\n<th>\u0938\u092e\u093e\u0928\u0924\u093e\u090f\u0901<\/th>\n<th>\u092e\u0924\u092d\u0947\u0926<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td>\u090f\u0938\u090f\u0938\u090f\u0932 \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917<\/td>\n<td>HTTPS \u0915\u094b HTTP \u092e\u0947\u0902 \u0921\u093e\u0909\u0928\u0917\u094d\u0930\u0947\u0921 \u0915\u0930\u0924\u093e \u0939\u0948<\/td>\n<td>\u090f\u092e\u0906\u0908\u091f\u0940\u090f\u092e \u0939\u092e\u0932\u093e<\/td>\n<td>\u0932\u0915\u094d\u0937\u094d\u092f SSL<\/td>\n<\/tr>\n<tr>\n<td>\u090f\u092e\u0906\u0908\u091f\u0940\u090f\u092e \u0939\u092e\u0932\u093e<\/td>\n<td>\u0938\u0902\u091a\u093e\u0930 \u0915\u094b \u092c\u093e\u0927\u093f\u0924 \u0915\u0930\u0928\u093e \u0914\u0930 \u092c\u0926\u0932\u0928\u093e<\/td>\n<td>\u090f\u0938\u090f\u0938\u090f\u0932 \u0936\u093e\u092e\u093f\u0932 \u0939\u0948<\/td>\n<td>\u0935\u094d\u092f\u093e\u092a\u0915 \u0938\u094d\u0915\u094b\u092a<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>\u092d\u0935\u093f\u0937\u094d\u092f \u0915\u0947 \u092a\u0930\u093f\u092a\u094d\u0930\u0947\u0915\u094d\u0937\u094d\u092f \u0914\u0930 \u092a\u094d\u0930\u094c\u0926\u094d\u092f\u094b\u0917\u093f\u0915\u093f\u092f\u093e\u0901<\/h2>\n<ul>\n<li><strong>\u0909\u0928\u094d\u0928\u0924 \u092a\u0939\u091a\u093e\u0928:<\/strong> SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u094b\u0902 \u0915\u093e \u092a\u0924\u093e \u0932\u0917\u093e\u0928\u0947 \u0915\u0947 \u0932\u093f\u090f \u092c\u0947\u0939\u0924\u0930 \u0924\u0930\u0940\u0915\u0947\u0964<\/li>\n<li><strong>\u090f\u091a\u090f\u0938\u091f\u0940\u090f\u0938 \u0915\u093e \u0935\u094d\u092f\u093e\u092a\u0915 \u0930\u0942\u092a \u0938\u0947 \u0905\u092a\u0928\u093e\u092f\u093e \u091c\u093e\u0928\u093e:<\/strong> \u0907\u0928 \u0939\u092e\u0932\u094b\u0902 \u0915\u094b \u0930\u094b\u0915\u0928\u0947 \u0915\u0947 \u0932\u093f\u090f \u090f\u0915 \u0906\u0936\u093e\u091c\u0928\u0915 \u0924\u0915\u0928\u0940\u0915\u0964<\/li>\n<\/ul>\n<h2>\u092a\u094d\u0930\u0949\u0915\u094d\u0938\u0940 \u0938\u0930\u094d\u0935\u0930 \u0915\u094b SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u0947 \u0938\u0947 \u0915\u0948\u0938\u0947 \u091c\u094b\u0921\u093c\u093e \u091c\u093e \u0938\u0915\u0924\u093e \u0939\u0948<\/h2>\n<p>\u092a\u094d\u0930\u0949\u0915\u094d\u0938\u0940 \u0938\u0930\u094d\u0935\u0930 SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0939\u092e\u0932\u094b\u0902 \u0915\u0947 \u0916\u093f\u0932\u093e\u092b\u093c \u090f\u0915 \u0932\u0915\u094d\u0937\u094d\u092f \u0914\u0930 \u092c\u091a\u093e\u0935 \u0926\u094b\u0928\u094b\u0902 \u0939\u094b \u0938\u0915\u0924\u0947 \u0939\u0948\u0902\u0964 \u091c\u092c \u0939\u092e\u0932\u093e\u0935\u0930 \u091f\u094d\u0930\u0948\u092b\u093c\u093f\u0915 \u0915\u094b \u0930\u094b\u0915\u0928\u0947 \u0915\u0947 \u0932\u093f\u090f \u0909\u0928\u0915\u093e \u0909\u092a\u092f\u094b\u0917 \u0915\u0930\u0924\u0947 \u0939\u0948\u0902 \u0924\u094b \u0909\u0928\u094d\u0939\u0947\u0902 \u0928\u093f\u0936\u093e\u0928\u093e \u092c\u0928\u093e\u092f\u093e \u091c\u093e \u0938\u0915\u0924\u093e \u0939\u0948\u0964 \u0907\u0938\u0915\u0947 \u0935\u093f\u092a\u0930\u0940\u0924, OneProxy (oneproxy.pro) \u0926\u094d\u0935\u093e\u0930\u093e \u092a\u094d\u0930\u0926\u093e\u0928 \u0915\u093f\u090f \u0917\u090f \u0938\u0941\u0930\u0915\u094d\u0937\u093f\u0924 \u092a\u094d\u0930\u0949\u0915\u094d\u0938\u0940 \u0938\u0930\u094d\u0935\u0930, HTTPS \u0915\u0928\u0947\u0915\u094d\u0936\u0928 \u0915\u094b \u0932\u093e\u0917\u0942 \u0915\u0930\u0928\u0947 \u0914\u0930 HSTS \u0915\u093e \u0909\u092a\u092f\u094b\u0917 \u0915\u0930\u0928\u0947 \u0915\u0947 \u0932\u093f\u090f \u0915\u0949\u0928\u094d\u092b\u093c\u093f\u0917\u0930 \u0915\u093f\u090f \u091c\u093e \u0938\u0915\u0924\u0947 \u0939\u0948\u0902, \u091c\u093f\u0938\u0938\u0947 SSL \u0938\u094d\u091f\u094d\u0930\u093f\u092a\u093f\u0902\u0917 \u0915\u093e \u091c\u094b\u0916\u093f\u092e \u0915\u092e \u0939\u094b \u091c\u093e\u0924\u093e \u0939\u0948\u0964<\/p>\n<h2>\u0938\u092e\u094d\u092c\u0902\u0927\u093f\u0924 \u0932\u093f\u0902\u0915\u094d\u0938<\/h2>\n<ul>\n<li><a href=\"https:\/\/oneproxy.pro\/in\/\" target=\"_new\" rel=\"noopener\">OneProxy \u0906\u0927\u093f\u0915\u093e\u0930\u093f\u0915 \u0935\u0947\u092c\u0938\u093e\u0907\u091f<\/a><\/li>\n<li><a href=\"https:\/\/www.blackhat.com\/\" target=\"_new\" rel=\"noopener nofollow\">\u092e\u094b\u0915\u094d\u0938\u0940 \u092e\u093e\u0930\u094d\u0932\u093f\u0928\u0938\u094d\u092a\u093e\u0907\u0915 \u0915\u0940 \u092c\u094d\u0932\u0948\u0915 \u0939\u0948\u091f \u092a\u094d\u0930\u0938\u094d\u0924\u0941\u0924\u093f<\/a><\/li>\n<li><a href=\"https:\/\/en.wikipedia.org\/wiki\/HTTPS\" target=\"_new\" rel=\"noopener nofollow\">HTTPS \u0914\u0930 SSL \u0915\u094b \u0938\u092e\u091d\u0928\u093e<\/a><\/li>\n<li><a href=\"https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/HTTP\/Headers\/Strict-Transport-Security\" target=\"_new\" rel=\"noopener nofollow\">HTTP \u0938\u0916\u094d\u0924 \u092a\u0930\u093f\u0935\u0939\u0928 \u0938\u0941\u0930\u0915\u094d\u0937\u093e (HSTS)<\/a><\/li>\n<\/ul>\n<p><strong>\u091f\u093f\u092a\u094d\u092a\u0923\u0940:<\/strong> \u092f\u0939\u093e\u0902 \u0926\u0940 \u0917\u0908 \u091c\u093e\u0928\u0915\u093e\u0930\u0940 \u0905\u0902\u0924\u093f\u092e \u0905\u0926\u094d\u092f\u0924\u0928 \u0915\u0947 \u0905\u0928\u0941\u0938\u093e\u0930 \u0938\u091f\u0940\u0915 \u0939\u0948 \u0924\u0925\u093e \u092a\u094d\u0930\u094c\u0926\u094d\u092f\u094b\u0917\u093f\u0915\u0940 \u092e\u0947\u0902 \u092a\u094d\u0930\u0917\u0924\u093f \u092f\u093e \u0938\u0941\u0930\u0915\u094d\u0937\u093e \u092a\u0930\u093f\u0926\u0943\u0936\u094d\u092f \u092e\u0947\u0902 \u092a\u0930\u093f\u0935\u0930\u094d\u0924\u0928 \u0915\u0947 \u0938\u093e\u0925 \u0907\u0938\u092e\u0947\u0902 \u092a\u0930\u093f\u0935\u0930\u094d\u0924\u0928 \u0939\u094b \u0938\u0915\u0924\u093e \u0939\u0948\u0964<\/p>","protected":false},"featured_media":479125,"menu_order":0,"template":"","meta":{"_acf_changed":false,"content-type":"","inline_featured_image":false,"footnotes":""},"class_list":["post-479124","wiki","type-wiki","status-publish","has-post-thumbnail","hentry"],"acf":{"faq_title":"Frequently Asked Questions about <mark>SSL Stripping Attack<\/mark>","faq_items":[{"question":"What is an SSL Stripping Attack?","answer":"<p>An SSL Stripping Attack is a method where an attacker downgrades a victim's connections from HTTPS to HTTP. This allows the attacker to intercept, read, or modify data that the victim believes to be secure, without them noticing that their information is being compromised.<\/p>"},{"question":"Who first coined the term \"SSL Stripping\"?","answer":"<p>The term \"SSL stripping\" was first coined by a security researcher named Moxie Marlinspike during the Black Hat Briefings conference in 2009.<\/p>"},{"question":"How does SSL Stripping Attack work?","answer":"<p>The SSL stripping attack takes place within a Man-in-the-Middle (MITM) attack framework. By downgrading a connection from HTTPS to HTTP, an attacker can read or modify the data without either party noticing. It usually targets public Wi-Fi networks and other environments where the attacker can intercept traffic easily.<\/p>"},{"question":"What are the types of SSL Stripping Attack?","answer":"<p>There are three main types of SSL Stripping Attacks:<\/p><ol><li>Basic SSL Stripping - Simple downgrade from HTTPS to HTTP.<\/li><li>Extended SSL Stripping - Includes re-encryption and other complexities.<\/li><li>Mobile SSL Stripping - Specifically targets mobile devices.<\/li><\/ol>"},{"question":"How can SSL Stripping Attacks be prevented?","answer":"<p>SSL Stripping Attacks can be prevented by educating users about the risks, promoting the use of security indicators like padlock icons in browsers, implementing HTTP Strict Transport Security (HSTS), and using secure proxy servers like OneProxy that enforce HTTPS connections.<\/p>"},{"question":"What is the future perspective related to SSL Stripping Attack?","answer":"<p>The future perspective related to SSL Stripping Attack includes enhanced detection methods and the widespread adoption of technologies like HSTS, which can significantly reduce the risk of these attacks.<\/p>"},{"question":"How are proxy servers like OneProxy associated with SSL Stripping Attack?","answer":"<p>Proxy servers like OneProxy can both be a target and a defense against SSL stripping attacks. They can be targeted when attackers use them to intercept traffic. Conversely, secure proxy servers can be configured to enforce HTTPS connections and use HSTS, reducing the risk of SSL stripping.<\/p>"},{"question":"Where can I find more information about SSL Stripping Attack?","answer":"<p>You can find more information about SSL Stripping Attack through the following resources:<\/p><ul><li><a href=\"https:\/\/www.oneproxy.pro\/\" target=\"_new\">OneProxy Official Website<\/a><\/li><li><a href=\"https:\/\/www.blackhat.com\/\" target=\"_new\">Moxie Marlinspike's Black Hat Presentation<\/a><\/li><li><a href=\"https:\/\/en.wikipedia.org\/wiki\/HTTPS\" target=\"_new\">Understanding HTTPS and SSL<\/a><\/li><li><a href=\"https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/HTTP\/Headers\/Strict-Transport-Security\" target=\"_new\">HTTP Strict Transport Security (HSTS)<\/a><\/li><\/ul>"}]},"_links":{"self":[{"href":"https:\/\/oneproxy.pro\/in\/wp-json\/wp\/v2\/wiki\/479124","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/oneproxy.pro\/in\/wp-json\/wp\/v2\/wiki"}],"about":[{"href":"https:\/\/oneproxy.pro\/in\/wp-json\/wp\/v2\/types\/wiki"}],"version-history":[{"count":0,"href":"https:\/\/oneproxy.pro\/in\/wp-json\/wp\/v2\/wiki\/479124\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/oneproxy.pro\/in\/wp-json\/wp\/v2\/media\/479125"}],"wp:attachment":[{"href":"https:\/\/oneproxy.pro\/in\/wp-json\/wp\/v2\/media?parent=479124"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}