New Techniques for Defeating SSL/TLS - Blackhat-09 Video

[vivek.securitywizard () gmail com]

This is the full video of the SSL attack demonstrated by Moxie at Blackhat this year - 

"This presentation will demonstrate some new tools and techniques that allow attackers to silently alter, inject, and 
log traffic intended for secure transmission by SSL/TLS in common web applications such as online banking or secure 
webmail logins. It builds off of the SSL exploit tools and research on the failure of browsers to validate 
BasicConstraints that I published in 2002, and will include demonstrations of a new tool for exploiting current use 
patterns as well as some data gathered from field testing in the real world."

http://securitytube.net/Defeating-SSL-using-SSLStrip-(Marlinspike-Blackhat)-video.aspx