Google Chrome will have a new feature for MITM attacks

Share if you likedShare on Facebook0Share on Google+0Tweet about this on TwitterShare on LinkedIn11

A new security feature will be added to Google Chrome that will recognize when third-party software is making man in the middle attack (MITM).

Google Chrome will display a new warning page, which means that the browser has detected known software on the computer or network that can perform a man-in-the-middle (MITM) attack.

“In cryptography and computer security, a man-in-the-middle attack (MITM) is an attack where the attacker secretly relays and possibly alters the communication between two parties who believe they are directly communicating with each other.”

The hardest section when dealing with encrypted HTTPS traffic is that most MITM tools fail to accurately rewrite the victim’s encrypted connections, causing SSL errors that Chrome will detect.

Most data are now encrypted with HTTPS, there is already a big hurdle for man-in-the-middle attacks, but they are for sure possible through fake page certificates. And now, Chrome 63 is used, attempting to notify the user better when such things are detected – for example by changing firewall or antivirus software.

If you want to try out the new feature, double click on the Chrome Canary icon/shortcut, then select Properties from the menu and in the “Target” field add the following “–enable-features=MITMSoftwareInterstitial” then click save.

 

Share if you likedShare on Facebook0Share on Google+0Tweet about this on TwitterShare on LinkedIn11

Eslam Medhat

is a professional pen-tester with over 9 years of IT experience bringing a strong background in programming languages and application security, ranging from network and system administration to exploit research and development. He reported various vulnerabilities for high profile companies and vendors and was successfully acknowledged by them.

Leave a Reply