The document discusses a man-in-the-middle attack over a wireless network. It describes how a hacker can intercept traffic between a victim and the host they are communicating with by placing themselves in the middle. The hacker sets up a rogue wireless access point and uses tools like DNS spoofing and a delegated proxy server to redirect traffic and perform an SSL man-in-the-middle attack by presenting a fake certificate to the victim. A demonstration of this attack will be shown from the victim's perspective in the next video.

1. SSL Man-in-the-Middle Attack over Wireless Vivek Ramachandran http://www.SecurityTube.Net

4. Attack Premise Victim Hacker Internet default I am the “default” AP DnsSpoof Delegated Hacker is connected to the Internet Hacker sets up a wireless Honeypot HONEYPOT

5. Attack Steps Victim Hacker Internet default DnsSpoof Delegated HONEYPOT DNS Request for mail.yahoo.com 192.168.1.1 192.168.1.2 DNS Reply mail.yahoo.com at 192.168.1.1 https://mail.yahoo.com Sends False Certificate Accepts Certificate Sends Authentication Data Forwards Data to the real Yahoo Server Forwards Reply from Yahoo back to Client

6. Delegated – A closer look Delegated Yahoo Victim SPOOFED CERT YAHOO CERT Delegated Uses a self generated certificate to communicate with Client Delegated Uses Yahoo’s certificate to communicate with Yahoo email servers