SSLStrip Android

1.0.1 With SSLStrip on your Android device, you can decrypt the protected traffic on any network and ''sniff'' usernames and passwords from connected devices
8/10 (3 Votes)

Although application itself is called SSLStrip, don't believe that it will be able to break the SSL security protocol that protects all information that travels through a network. The functions of this application take a different route, such as by converting HTTPS traffic to HTTP. That is, converting it into unencrypted traffic.

Decrypt the usernames and passwords of a user

In order to use the application, you need to know the private IP address of the machine you're targeting. That is to say, you will need to have a network audit application that indicates which devices are connected. The server is deceived by redirecting the user to a web address through a link or redirection.

Obviously, this application cannot stand in place of an app that audits network security or anything like that...however you can use it to find out how bad ones work and roughly how your data may be in danger. You will find the occasional online manual that will allow you to learn more about how to work with this tool.

Requirements and additional information:
  • Minimum operating system requirements: Android 1.5.
  • The installation of the app by means of the APK file requires the activation of the "Unknown sources" option within Settings>Applications.
Laura Stutt
Laura Stutt
Moxie Marlinspike
Over a year ago
More than a year ago
69 KB

We'd love to hear from you. Do you want to give us your opinion?

Logged off

Logged off