Shulou(Shulou.com)06/01 Report--

DNS hijacking can only intercept traffic initiated through a domain name, and communications directly using IP addresses will not be affected; there is only risk when browsing or downloading, and there is no problem in other situations; while the gateway is hijacked, all user traffic cannot escape the clutches.

If you doubt your web page, don't hijack it? How to determine this question?

Iis7 website monitoring

Website hijacking, pollution, opening speed and other messages can be detected.

Why do you like to hijack web pages?

In theory, if the traffic data is hijacked to the user, the network communication of the corresponding program will be obtained. But in reality, the data does not represent the real content. Some important network programs are proprietary binary protocols, as well as various encryption methods. It is almost impossible to restore users' chat messages and payment passwords through traffic. Even if it takes various means to crack the communication protocol of a program, once the program upgrade changes the format of the protocol, all previous efforts may be wasted. Therefore, it is difficult to find a client hijacking solution once and for all.

However, not all programs are client-side. A new application model, WebApp, is developing so fast that it surpasses the trend of the client. In this era of cross-platform, good experience and cloud support, WebApp is becoming more and more popular. Various applications have been transplanted to the web version, and some have even replaced the client. At the same time, it has also created an unprecedented momentum of traffic hijacking.

WebApp, its essence is still an ordinary web page. Although web technology has made great progress in recent years and various new functions have been added again and again, the underlying protocol has not been greatly improved-HTTP, a protocol that has been used for more than 20 years.

In HTTP, everything is transmitted in clear text, and traffic can be controlled at will on the way. The traditional program has been downloaded to the local in advance, and there is only communication traffic when it is run, while the WebApp used online has not only communication data, but also program interface and code, so hijacking is almost easy.

If you fish outdoors where there is no 3G signal, you will not be able to forward the traffic to the external network. However, all this can be easily solved by using the web. We can build a site on our own device to retain users to initiate offline. It's even easier for devices connected to WiFi that automatically play the web.

Therefore, hijacking web traffic has become a favorite of all kinds of people, one that can be initiated on any web page.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.