What's wrong with HTTP?

At the dawn of the internet, there was a need for a standard protocol to exchange "documents" and it was called the HyperText Transfer Protocol (HTTP). Security was not a priority during the development of the protocol, and no one had any idea of how widely used it would be one day. That day eventually came, and because the lack of any security measures it was trivial to intercept information flowing on the protocol. HTTPS saw the daylight not long after and introduced SSL certificates as a way to encrypt and protect data on the wire.

In this lab, I demonstrate just how insecure pure HTTP is. 

After Lab Review

An interesting lab that shows the true reason why to consider security as part of your day to day life. Setting up a website is something most IT professionals will do, and while a plain http site might be quicker and easier to set up, it really impacts your security! 

Posted
AuthorMartin
CategoriesSEC602