Test your machine for Superfish style SSL interceptions


Recommended Posts

A while ago GRC (Steve Gibson) created a page which lets you type in a web address and compare the SHA1 Fingerprint you get via the Official SHA1 Fingerprint he lists on his page, to that which your browser provides. If your browsers SHA1 hash and his don't match, then there is an interception going on. Either your AV is system scanning SSL connections, an employer is monitoring your activity or something of like likes of Superfish is up to no good.

 

This is just a good way to check to make sure nothing on your machine is intercepting your SSL connections.

 

*Disclaimer* Just because your certificates pass the test, still doesn't mean you aren't being targeted by the NSA! *Disclaimer* :)

 

16048228873_6e92e08ccc_c.jpg

 

https://www.grc.com/fingerprints.htm'

 

 

Firefox

 

Step 1

 

16489611989_f9609c7679_o.jpg

 

 

 

Step 2

 

16488182428_1ee6593c8d_o.jpg

 

Step 3

Easiest way to compare, is to highlight the SHA1 hash and copy it.

Then go to GRC's page were he lists the SHA1 hash and do a CTRL+F and paste in the hash. If they match, his will become highlighted
 

 

16674739682_9c334a994c_b.jpg

 

Chrome

 

Step 1

 

16675053692_fb1ba71252_o.jpg

 

Step 2

 

Easiest way to compare, is to highlight the SHA1 hash and copy it.

Then go to GRC's page were he lists the SHA1 hash and do a CTRL+F and paste in the hash. If they match, his will become highlighted

 

 

16489928629_06ec387f07_o.jpg

 

Internet Explorer

 

Step 1

 

16489997999_449e3ace02_o.jpg

 

Step 2

 

Easiest way to compare, is to highlight the SHA1 hash and copy it.

Then go to GRC's page were he lists the SHA1 hash and do a CTRL+F and paste in the hash. If they match, his will become highlighted

 

16489928629_06ec387f07_o.jpg

  On 28/02/2015 at 04:13, warwagon said:

A while ago GRC (Steve Gibson) created a page which lets you type in a web address and compare the SHA1 Fingerprint you get via the Official SHA1 Fingerprint he lists on his page, to that which your browser provides. If your browsers SHA1 hash and his don't match, then there is an interception going on. Either your AV is system scanning SSL connections, an employer is monitoring your activity or something of like likes of Superfish is up to no good.

 

This is just a good way to check to make sure nothing on your machine is intercepting your SSL connections.

 

While this may be somewhat useful to confirm whether or not you have something like superfish installed, i.e. something which is doing a MITM/interception of https connections, but which hasn't been built/deployed to maliciously and covertly intercept your communications taking care to avoid detection; it is not going to necessarily help you detect interception by an authority who is trying to intercept your communications covertly, which as well as intercepting your https connection to grc.com could also easily replace the fingerprints listed on the copy of that page you are seeing with the fake ones, or could be directly intercepting grc.com retrieving it's view of those fingerprints.

 

In the latter case you could compare results across multiple different internet connections, but that won't help against mass interception by a powerful authority. The only way to be certain that you're getting the right certificate is to go (in person) directly to the right person at that company, and do a fingerprint check with them (or rely on a WOT model where one or more individuals in that trust chain have done so). Even then though there is the possibility that an authority could have demanded a copy of that company's private key, and so could be listening in actually using the genuine certificate.

 

That grc.com page and this post could potentially give a misleading sense of security.

  On 28/02/2015 at 23:23, theblazingangel said:
That grc.com page and this post could potentially give a misleading sense of security.

 

All I really wanted people to test for is Superfish style interceptions.

  On 01/03/2015 at 04:03, cork1958 said:

Dude,

You must be the most paranoid person on the planet!!   :s

 

At least on the internet anyway.

 

I was on one of the affected Lenovo models earlier today. Everything was good, as expected! ;)

 

Except had the word not got out about superfish, Everything wouldn't be good, as expected  :)

  On 01/03/2015 at 00:46, Enron said:

I tried https://www.nsa.gov

 

It was ok, but I think the NSA was intercepting it anyway.

 

Edward says you work there..........   :shifty:

  • Like 2
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • I hate to say it but MacOS being certified UNIX had this for years yet it took Linux over 30 years to have this feature. 🤦🏻‍♂️🤷🏻‍♂️
    • 65-inch Samsung Crystal UHD DU8000 series Smart TV is back to its lowest price by Fiza Ali Amazon is once again offering the 65-inch Samsung DU8000 Series Smart TV at its lowest price. The DU8000 offers a Crystal UHD LED panel that delivers a native 3,840 × 2,160 resolution while the Crystal Processor 4K employs AI‑driven upscaling to optimise lower resolution content to 4K clarity. For picture quality, the DU8000 supports a comprehensive High Dynamic Range (HDR) suite including HDR10, HDR10+, and HLG alongside Film and Filmmaker Modes. Dynamic Crystal Colour enhances colour volume for richer, more accurate hues, and Mega Contrast with UHD Dimming boosts depth and definition in both bright and dark scenes. Furthermore, the Motion Xcelerator engine maintains smooth motion clarity at 60Hz. Gaming on this model should be good with Auto Low Latency Mode (ALLM), Variable Refresh Rate (VRR) support, and HGiG customisation, promising minimal input lag and fluid frame rates. HGiG (HDR Gaming Interest Group) customisation ensures that HDR content in games is displayed as the developers intended by applying standardised tone mapping tailored to gaming, rather than general HDR video settings. This helps prevent overly dark shadows or blown-out highlights, maintaining detail and visual consistency across a wide range of game environments. Moreover, a dedicated Gaming Hub offers streamlined access to cloud gaming services and console content. Audio is driven by a 20W (2‑channel) system featuring Samsung’s Object Tracking Sound Lite (OTS Lite) and Q‑Symphony which synchronises TV speakers and compatible soundbars for multidimensional sound without overlap. Adaptive Sound analyses each scene to optimise dialogue and effects, while dual‑device Bluetooth pairing allows wireless connection of headsets or external speakers. Furthermore, the Tizen Smart TV platform offers a built‑in Bixby voice control and compatibility with Alexa and Google Assistant. Connectivity options include three HDMI 2.0 ports (with eARC/ARC), two USB‑A ports, Ethernet, optical digital audio out, RF in, and dual‑band Wi‑Fi 5 (802.11ac). Accessibility features include multi‑language Voice Guide, high‑contrast and zoom modes for low‑vision users, closed captions and sign‑language zoom for the hearing impaired, and slow‑repeat buttons and a remote‑control app option for those with motor impairments. 65-inch Samsung Crystal UHD DU8000 Series HDR Smart TV: $399.99 (Amazon US) This Amazon deal is US-specific and not available in other regions unless specified. If you don't like it or want to look at more options, check out the Amazon US deals page here. Get Prime (SNAP), Prime Video, Audible Plus or Kindle / Music Unlimited. Free for 30 days. As an Amazon Associate, we earn from qualifying purchases.
    • I'm not exactly sure where to post this, so move it if needed. Where can I get a Windows 11 Pro upgrade key cheap? The one I bought through Neowin Deals no longer works, and I just bought a new laptop & want to upgrade from Home to Pro.
    • Except Rolling Releases. No EOL, continuous updates.
  • Recent Achievements

    • Week One Done
      Stephen Leibowitz earned a badge
      Week One Done
    • Week One Done
      Homayoun Hotak earned a badge
      Week One Done
    • Dedicated
      Profit earned a badge
      Dedicated
    • One Month Later
      hhgygy earned a badge
      One Month Later
    • Week One Done
      hhgygy earned a badge
      Week One Done
  • Popular Contributors

    1. 1
      +primortal
      640
    2. 2
      ATLien_0
      240
    3. 3
      Xenon
      169
    4. 4
      neufuse
      151
    5. 5
      +FloatingFatMan
      124
  • Tell a friend

    Love Neowin? Tell a friend!