Man-in-the-middle attack

Revision as of 16:34, 29 April 2007 by Ethernet (Talk | contribs)

Jump to: navigation, search
This is an Attack. To view all attacks, please see the Attack Category page.


A Man In The Middle (MITM) attack is a form of attack in which an evil hacker can trick end users in to thinking he is a bank or other such service in order to 'sniff' or steal the users login credentials.


File:Http:// diagram lg.gif Image courtesy of [1]
In this example you see the attacker intercepting, logging and stealing any information passed to the server.

Related Threats

Related Attacks

SSL man-in-the-middle attack

Related Vulnerabilities

Related Countermeasures


This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.