With more people joining the internet scene each day it's important that it's security is.. well it has to be good. Of course everything can be hacked and that's the way hackers work. They know there IS a vulnerability but they don't don't know the rest. in this article i'll try to explain the big difference between HTTP and HTTPS
HTTP means Hyper Text Transfer Protocol. Whenever we open up a website we use this protocol. The client asks the server to open communication on port 80. The server does that and opens port 80 and at the client side several random ports are opened.
Is HTTP secure?
HTTP is absolutely not secure. If someone would use a MITM (Man In The Middle) attack and search with Wireshark the attacker would easily gain access to your account.
Packet data send with HTTP is NOT encrypted. That's why it's so easy to crack into a session using MITM and Wireshark.
HTTPS is a combination of HTTP (Hyper Text Transfer Protocol) and SSL (Secure Socket Layer protocol) / TLS (Transport Layer Security). HTTPS is mainly used for internet banking, payment transactions and login pages.
It's goal is to provide maximum security for web pages that send secure information. HTTPS works the same as HTTP but it has encryption on top of it. HTTPS works like this:
Is HTTPS secure?
HTTPS is secure. if someone would use the same method as with HTTP (MITM + Wireshark), then the attacker would only get Encrypted information as seen above.
My conclusion would be that whenever you can USE HTTPS!!! HTTPS is secure and prevents hackers from hacking your precious Social media accounts. Of course there are ways around HTTPS as there are always ways to bypass security. But for now You'r accounts will be safe
Want to help support Null Byte and start making your own money as a white hat hacker? Jump start your White-Hat Hacking career with our 2020 Premium Ethical Hacking Certification Training Bundle from the new Null Byte Shop and get over 60 hours of training from Ethical Hacking Professionals.