Something to add, certificate cleanup and visited URLs

Question

Something to add, certificate cleanup and visited URLs

Itsnothectic opened this issue 8 years ago · 3 comments

Itsnothectic commented 8 years ago

Sorry if its already in but I did not see it when looking quickly at what things do by description.

http://unmitigatedrisk.com/?p=23

Answer 1 · 2016-10-03T11:02:32.000Z

Hi @Itsnothectic, what is the purpose or benefit of wiping the certificate cache?

Answer 2 · 2016-10-26T13:40:40.000Z

some malware has been known to create self signed and import them into the certificate cache. this way it can use https traffic without throwing a redflag. It also allows for MITM and the likes as well if the software is proxying and forwarding elsewhere it is actually a pretty good idea to do a reset I +1 this vocatus.

Answer 3 · 2016-10-27T20:40:45.000Z

@alazare619 is there any downside? e.g. does this wipe the built-in Microsoft or Verisign root certs, for example?

edit: Adding to Tron in Stage 3: Disinfect and closing issue. Thanks for the suggestion.