http://socpuppet.blogspot.com/2017/11/ssl-cert-caching-for-mitm-inspections.html
In MSIE ( microsoft Internet Explorer and Chrome ) it seems these browser always shows the correct CAchain issuer for the webserver when you are or are not behind a MiTM proxy.
Take www.google.com
( the left shows the corp trusted CAchain ) and ( right shows the real CAchain )
Again, knowing the true certificate issuer, you can easily determine if a website has a proxy inspection thing going on.
NSE ( network security expert) and Route/Switching Engineer
kfelix -----a----t---- socpuppets ---dot---com
^ ^
=( @ @ )=
o
/ \
No comments:
Post a Comment