In this Challenge Lab, you will perform an Attacker in the Middle (AitM) exploitation. First, you will configure Burp Suite for AitM, and then you will perform an initial AitM-related compromise of the target client. Next, you will use AitM to intercept and manipulate client plaintext requests, and then you will compromise a client with a false certificate authority. Finally, you will perform an AitM interception and modification of TLS encrypted HTTPS sessions. Note: Once you begin the Challenge Lab, you will not be able to pause, save, or exit and then return to your Challenge Lab. Please ensure that you have set aside enough time to complete the Challenge Lab before you start.
Learning Objectives
In this Challenge Lab, you will perform an Attacker in the Middle (AitM) exploitation. First, you will configure Burp Suite for AitM, and then you will perform an initial AitM-related compromise of the target client. Next, you will use AitM to intercept and manipulate client plaintext requests, and then you will compromise a client with a false certificate authority. Finally, you will perform an AitM interception and modification of TLS encrypted HTTPS sessions. Note: Once you begin the Challenge Lab, you will not be able to pause, save, or exit and then return to your Challenge Lab. Please ensure that you have set aside enough time to complete the Challenge Lab before you start.