Ethereal-users: Re: [Ethereal-users] Where can I find IE debug DLL, to dump HTTPS requests?
On Wed, 22 Sep 2004 20:38:42 -0400, Hansang Bae <hbae@xxxxxxxxxx> wrote:
> On 07:05 AM 9/17/2004, nevez@xxxxxxxx wrote:
> >I read in a previous post that a debug version of Internet Explorer dll can show the HTTP requests being sent by IE over a SSL connection. Any info about where to find it?
> >I'm developing web apps in Java, and that would be very useful...
>
> It's in the resource kit if I remember. I just punted to our MS support person and asked for the checked (debug) version. They are tied to the version of wininet.dll that's installed on the system.
>
> hsb
>
> _______________________________________________
> Ethereal-users mailing list
> Ethereal-users@xxxxxxxxxxxx
> http://www.ethereal.com/mailman/listinfo/ethereal-users
>
You don't need the debug version.
You can write an ActiveX .dll be inserted into IE and hook all the URL
(include https)
request/response before and after the user see it. I saw some
spywares doing it that way nowaday. Useful debug feature sometime,
big security hole. That's why I don't use IE anymore.
BTW, this is also how the page ranking part of google toolbar work.
I have not seen any firewall product that can detect or block this
kind of attack.
Not zone alarm or kerio. I laugh when a Banker/stock broker using windows IE
and tell me 128 bits HTTPS is secured.
--
-Tony