{"id":67,"date":"2026-07-08T11:50:11","date_gmt":"2026-07-08T08:50:11","guid":{"rendered":"https:\/\/secradar.net\/blog\/ortadaki-adam-mitm-saldirisi-nedir\/"},"modified":"2026-07-08T11:50:11","modified_gmt":"2026-07-08T08:50:11","slug":"ortadaki-adam-mitm-saldirisi-nedir","status":"publish","type":"post","link":"https:\/\/secradar.net\/blog\/ortadaki-adam-mitm-saldirisi-nedir\/","title":{"rendered":"Ortadaki Adam (MITM) Sald\u0131r\u0131s\u0131 Nedir ve Nas\u0131l Korunulur?"},"content":{"rendered":"<p><strong>Ortadaki adam sald\u0131r\u0131s\u0131 (Man-in-the-Middle, MITM)<\/strong>, bir sald\u0131rgan\u0131n iki taraf aras\u0131ndaki ileti\u015fimin aras\u0131na gizlice girerek trafi\u011fi dinledi\u011fi, de\u011fi\u015ftirdi\u011fi veya y\u00f6nlendirdi\u011fi bir sald\u0131r\u0131 t\u00fcr\u00fcd\u00fcr. Siz bir bankaya veya e-postan\u0131za ba\u011fland\u0131\u011f\u0131n\u0131z\u0131 san\u0131rs\u0131n\u0131z; oysa t\u00fcm veri \u00f6nce sald\u0131rgan\u0131n elinden ge\u00e7er. MITM, veri h\u0131rs\u0131zl\u0131\u011f\u0131ndan oturum ele ge\u00e7irmeye kadar bir\u00e7ok sald\u0131r\u0131n\u0131n temelini olu\u015fturur.<\/p>\n<p>Bu yaz\u0131da MITM sald\u0131r\u0131s\u0131n\u0131n nas\u0131l \u00e7al\u0131\u015ft\u0131\u011f\u0131n\u0131, hangi y\u00f6ntemlerle yap\u0131ld\u0131\u011f\u0131n\u0131 ve \u2014 en \u00f6nemlisi \u2014 HTTPS, HSTS, DNSSEC ve \u015fifreli DNS gibi katmanlarla kendinizi ve sitenizi nas\u0131l koruyaca\u011f\u0131n\u0131z\u0131 ele al\u0131yoruz.<\/p>\n<h2>Ortadaki Adam Sald\u0131r\u0131s\u0131 Nas\u0131l \u00c7al\u0131\u015f\u0131r?<\/h2>\n<p>Klasik bir MITM sald\u0131r\u0131s\u0131nda \u00fc\u00e7 taraf vard\u0131r: siz (istemci), ger\u00e7ek sunucu ve aradaki sald\u0131rgan. Sald\u0131rgan kendini her iki tarafa da &#8220;kar\u015f\u0131 taraf&#8221; gibi tan\u0131t\u0131r:<\/p>\n<ol>\n<li>Siz sunucuya ba\u011flanmak istersiniz; ancak trafi\u011finiz sald\u0131rgana y\u00f6nlenir.<\/li>\n<li>Sald\u0131rgan sizin ad\u0131n\u0131za ger\u00e7ek sunucuya ba\u011flan\u0131r ve bir <strong>r\u00f6le (aktar\u0131c\u0131)<\/strong> gibi davran\u0131r.<\/li>\n<li>Aradan ge\u00e7en t\u00fcm veriyi okuyabilir; parolalar, kart bilgileri, \u00e7erezler ve mesajlar if\u015fa olur.<\/li>\n<li>Dilerse veriyi <strong>de\u011fi\u015ftirebilir<\/strong>: sayfaya zararl\u0131 kod enjekte edebilir, para transferindeki hesap numaras\u0131n\u0131 de\u011fi\u015ftirebilir.<\/li>\n<\/ol>\n<p>Kritik nokta: iyi yap\u0131lm\u0131\u015f bir MITM sald\u0131r\u0131s\u0131nda <strong>hi\u00e7bir \u015fey ters gitmi\u015f gibi g\u00f6r\u00fcnmez<\/strong>. Sayfa normal a\u00e7\u0131l\u0131r, i\u015flem tamamlan\u0131r \u2014 arka planda t\u00fcm veri s\u0131zm\u0131\u015ft\u0131r.<\/p>\n<h2>Yayg\u0131n MITM Sald\u0131r\u0131 Y\u00f6ntemleri<\/h2>\n<ul>\n<li><strong>Sahte \/ a\u00e7\u0131k Wi-Fi a\u011flar\u0131:<\/strong> Kafe, havaalan\u0131 gibi yerlerde sald\u0131rgan &#8220;\u00dccretsiz Wi-Fi&#8221; ad\u0131nda sahte bir eri\u015fim noktas\u0131 kurar; ba\u011flanan herkesin trafi\u011fi \u00fczerinden ge\u00e7er.<\/li>\n<li><strong>ARP zehirlenmesi (ARP spoofing):<\/strong> Yerel a\u011fda sald\u0131rgan, kendini a\u011f ge\u00e7idi (router) gibi tan\u0131tarak di\u011fer cihazlar\u0131n trafi\u011fini kendine \u00e7eker.<\/li>\n<li><strong>DNS sahtecili\u011fi (cache poisoning):<\/strong> Sald\u0131rgan DNS yan\u0131tlar\u0131n\u0131 sahteleyerek sizi do\u011fru alan ad\u0131nda yanl\u0131\u015f (kendi) sunucusuna y\u00f6nlendirir. Bu a\u00e7\u0131\u011f\u0131 <a href=\"https:\/\/secradar.net\/blog\/dnssec-nedir-dns-guvenligi\">DNSSEC yaz\u0131m\u0131zda<\/a> ayr\u0131nt\u0131l\u0131 ele ald\u0131k.<\/li>\n<li><strong>SSL stripping:<\/strong> Sald\u0131rgan, HTTPS ba\u011flant\u0131s\u0131n\u0131 gizlice HTTP&#8217;ye d\u00fc\u015f\u00fcrerek \u015fifrelemeyi ortadan kald\u0131r\u0131r ve trafi\u011fi a\u00e7\u0131k\u00e7a okur. HSTS bu sald\u0131r\u0131y\u0131 hedef al\u0131r.<\/li>\n<li><strong>Sahte\/hileli sertifika:<\/strong> Sald\u0131rgan, kurban\u0131n cihaz\u0131na g\u00fcvenilir g\u00f6r\u00fcnen sahte bir k\u00f6k sertifika y\u00fckleyebilir veya izinsiz bir sertifika kullanabilir.<\/li>\n<\/ul>\n<h2>MITM&#8217;e Kar\u015f\u0131 Birinci Savunma: HTTPS<\/h2>\n<p>MITM&#8217;e kar\u015f\u0131 en temel koruma <strong>u\u00e7tan uca \u015fifrelemedir<\/strong>: HTTPS (TLS). Trafik do\u011fru yap\u0131land\u0131r\u0131lm\u0131\u015f TLS ile \u015fifrelendi\u011finde, sald\u0131rgan araya girse bile veriyi okuyamaz veya sezdirmeden de\u011fi\u015ftiremez; \u00e7\u00fcnk\u00fc sunucunun kimli\u011fi ge\u00e7erli bir SSL sertifikas\u0131yla do\u011frulan\u0131r.<\/p>\n<p>Ancak bu, sertifikan\u0131n <strong>ger\u00e7ekten ge\u00e7erli ve g\u00fcvenilir<\/strong> olmas\u0131na ba\u011fl\u0131d\u0131r. &#8220;Ba\u011flant\u0131n\u0131z gizli de\u011fil&#8221; gibi uyar\u0131lar\u0131 asla g\u00f6rmezden gelmeyin \u2014 bu uyar\u0131lar tam olarak olas\u0131 bir MITM&#8217;e kar\u015f\u0131 sizi durdurmak i\u00e7indir. Bu hatalar\u0131n ne anlama geldi\u011fini <a href=\"https:\/\/secradar.net\/blog\/baglantiniz-gizli-degil-hatasi-cozumu\">ayr\u0131 bir yaz\u0131da<\/a> a\u00e7\u0131klad\u0131k. Kendi sitenizin sertifikas\u0131n\u0131n, zincirinin ve TLS yap\u0131land\u0131rmas\u0131n\u0131n sa\u011flam oldu\u011funu <a href=\"https:\/\/secradar.net\/ssl-sorgulama\">SSL Sorgulama<\/a> arac\u0131yla d\u00fczenli kontrol edin; zay\u0131f TLS s\u00fcr\u00fcmleri (TLS 1.0\/1.1) MITM&#8217;i kolayla\u015ft\u0131rd\u0131\u011f\u0131 i\u00e7in kapat\u0131lmal\u0131d\u0131r.<\/p>\n<h2>SSL Stripping&#8217;e Kar\u015f\u0131 HSTS<\/h2>\n<p>SSL stripping sald\u0131r\u0131s\u0131nda, kullan\u0131c\u0131 siteye ilk kez <code>http:\/\/<\/code> ile ba\u011flan\u0131rken sald\u0131rgan ba\u011flant\u0131y\u0131 HTTPS&#8217;e y\u00fckseltmeyi engeller ve trafi\u011fi a\u00e7\u0131k tutar. <strong>HSTS (HTTP Strict Transport Security)<\/strong> tam olarak bunu \u00f6nler: taray\u0131c\u0131ya &#8220;bu siteye yaln\u0131zca HTTPS ile ba\u011flan&#8221; talimat\u0131 verir, b\u00f6ylece HTTP&#8217;ye d\u00fc\u015f\u00fcrme denemesi ba\u015ftan ba\u015far\u0131s\u0131z olur.<\/p>\n<p>En g\u00fc\u00e7l\u00fc koruma i\u00e7in HSTS&#8217;i <code>includeSubDomains<\/code> ve <code>preload<\/code> ile kullanmak, alan ad\u0131n\u0131z\u0131 taray\u0131c\u0131lar\u0131n yerle\u015fik HSTS listesine ekletmek gerekir \u2014 b\u00f6ylece ilk ziyaret bile HTTP&#8217;ye d\u00fc\u015f\u00fcr\u00fclemez. HSTS yap\u0131land\u0131rmas\u0131n\u0131 <a href=\"https:\/\/secradar.net\/blog\/hsts-nedir-https-zorunlu-kilma\">HSTS rehberimizde<\/a> anlatt\u0131k; sitenizin bu ba\u015fl\u0131\u011f\u0131 do\u011fru g\u00f6nderip g\u00f6ndermedi\u011fini <a href=\"https:\/\/secradar.net\/guvenlik-basliklari\">HTTP G\u00fcvenlik Ba\u015fl\u0131klar\u0131<\/a> arac\u0131yla test edebilirsiniz.<\/p>\n<h2>DNS Katman\u0131nda Koruma: DNSSEC ve \u015eifreli DNS<\/h2>\n<p>MITM her zaman TLS katman\u0131nda olmaz; bazen daha a\u015fa\u011f\u0131da, DNS&#8217;te ba\u015flar. Sald\u0131rgan DNS yan\u0131t\u0131n\u0131 sahteleyerek sizi do\u011fru alan ad\u0131nda yanl\u0131\u015f IP&#8217;ye y\u00f6nlendirebilir:<\/p>\n<ul>\n<li><strong>DNSSEC<\/strong>, DNS yan\u0131tlar\u0131n\u0131 dijital imzayla do\u011frular; sahtelenmi\u015f bir yan\u0131t reddedilir. Alan ad\u0131n\u0131zda DNSSEC&#8217;i etkinle\u015ftirmek DNS tabanl\u0131 y\u00f6nlendirme sald\u0131r\u0131lar\u0131n\u0131 engeller. Ayr\u0131nt\u0131lar: <a href=\"https:\/\/secradar.net\/blog\/dnssec-nedir-dns-guvenligi\">DNSSEC Nedir?<\/a><\/li>\n<li><strong>\u015eifreli DNS (DoH\/DoT)<\/strong>, DNS sorgular\u0131n\u0131z\u0131 \u015fifreleyerek a\u011fdaki bir sald\u0131rgan\u0131n hangi siteleri ziyaret etti\u011finizi g\u00f6rmesini ve yan\u0131tlar\u0131 kurcalamas\u0131n\u0131 zorla\u015ft\u0131r\u0131r. Bkz. <a href=\"https:\/\/secradar.net\/blog\/sifreli-dns-doh-dot-nedir\">\u015eifreli DNS (DoH\/DoT)<\/a>.<\/li>\n<\/ul>\n<p>Alan ad\u0131n\u0131z\u0131n DNS ve DNSSEC durumunu <a href=\"https:\/\/secradar.net\/whois-sorgulama\">WHOIS<\/a> ve <a href=\"https:\/\/secradar.net\/dns-sorgulama\">DNS Sorgulama<\/a> ara\u00e7lar\u0131yla denetleyebilirsiniz.<\/p>\n<h2>Kullan\u0131c\u0131 Olarak MITM&#8217;den Nas\u0131l Korunursunuz?<\/h2>\n<ul>\n<li><strong>A\u00e7\u0131k\/halka a\u00e7\u0131k Wi-Fi&#8217;de dikkatli olun.<\/strong> Zorunluysa g\u00fcvenilir bir VPN kullan\u0131n; VPN t\u00fcm trafi\u011finizi \u015fifreleyerek a\u011fdaki sald\u0131rgana kar\u015f\u0131 ek bir katman ekler. (VPN ve olas\u0131 s\u0131z\u0131nt\u0131lar i\u00e7in <a href=\"https:\/\/secradar.net\/blog\/webrtc-ip-sizintisi-vpn\">WebRTC IP S\u0131z\u0131nt\u0131s\u0131<\/a> yaz\u0131m\u0131za bak\u0131n.)<\/li>\n<li><strong>Sertifika uyar\u0131lar\u0131n\u0131 asla atlamay\u0131n.<\/strong> &#8220;Ba\u011flant\u0131n\u0131z gizli de\u011fil&#8221; ekran\u0131n\u0131 g\u00f6r\u00fcyorsan\u0131z o siteye bilgi girmeyin.<\/li>\n<li><strong>Adres \u00e7ubu\u011funda HTTPS oldu\u011fundan emin olun<\/strong> ve hassas i\u015flemlerde alan ad\u0131n\u0131 dikkatle okuyun (oltalama ile birle\u015febilir; bkz. <a href=\"https:\/\/secradar.net\/blog\/oltalama-phishing-nedir-korunma\">Oltalama Nedir?<\/a>).<\/li>\n<li><strong>Cihaz ve taray\u0131c\u0131n\u0131z\u0131 g\u00fcncel tutun;<\/strong> g\u00fcvenlik yamalar\u0131 bir\u00e7ok MITM tekni\u011fini kapat\u0131r.<\/li>\n<li><strong>Tan\u0131mad\u0131\u011f\u0131n\u0131z k\u00f6k sertifikalar\u0131 y\u00fcklemeyin;<\/strong> &#8220;bu sertifikay\u0131 g\u00fcven&#8221; isteyen kurulumlara \u015f\u00fcpheyle yakla\u015f\u0131n.<\/li>\n<\/ul>\n<h2>Site Sahibi Olarak Al\u0131nacak \u00d6nlemler<\/h2>\n<ul>\n<li>T\u00fcm siteyi HTTPS&#8217;e ta\u015f\u0131y\u0131n ve HTTP&#8217;yi HTTPS&#8217;e y\u00f6nlendirin.<\/li>\n<li><strong>HSTS&#8217;i preload ile<\/strong> etkinle\u015ftirin; SSL stripping&#8217;i ba\u015ftan imk\u00e2ns\u0131z k\u0131l\u0131n.<\/li>\n<li>Zay\u0131f TLS s\u00fcr\u00fcmlerini ve cipher&#8217;lar\u0131 kapat\u0131n; <a href=\"https:\/\/secradar.net\/ssl-sorgulama\">SSL Sorgulama<\/a> ile A\/A+ hedefleyin.<\/li>\n<li>Alan ad\u0131n\u0131zda <strong>DNSSEC&#8217;i<\/strong> etkinle\u015ftirin ve <strong>CAA kayd\u0131<\/strong> ile yaln\u0131zca kulland\u0131\u011f\u0131n\u0131z CA&#8217;lara sertifika izni verin.<\/li>\n<li><a href=\"https:\/\/secradar.net\/guvenlik-basliklari\">G\u00fcvenlik ba\u015fl\u0131klar\u0131n\u0131z\u0131<\/a> s\u0131k\u0131la\u015ft\u0131r\u0131n; sertifika ve yap\u0131land\u0131rma de\u011fi\u015fikliklerini s\u00fcrekli izleyin.<\/li>\n<\/ul>\n<h2>\u00d6zetle<\/h2>\n<p>Ortadaki adam sald\u0131r\u0131s\u0131, ileti\u015fimin aras\u0131na s\u0131zarak veriyi dinlemeyi ve de\u011fi\u015ftirmeyi hedefler; en tehlikeli yan\u0131 \u00e7o\u011fu zaman fark edilmemesidir. Savunma tek bir sihirli ayar de\u011fil, <strong>katmanlar\u0131n birle\u015fimidir<\/strong>: do\u011fru yap\u0131land\u0131r\u0131lm\u0131\u015f HTTPS, HSTS ile zorunlu \u015fifreleme, DNSSEC ile do\u011frulanm\u0131\u015f DNS ve \u015fifreli DNS. Bu katmanlar\u0131 birlikte kurdu\u011funuzda, sald\u0131rgan\u0131n araya girmesi ya imk\u00e2ns\u0131z ya da an\u0131nda fark edilir h\u00e2le gelir.<\/p>\n<p>Sitenizin bu savunma katmanlar\u0131n\u0131 <a href=\"https:\/\/secradar.net\/ssl-sorgulama\">SSL Sorgulama<\/a>, <a href=\"https:\/\/secradar.net\/guvenlik-basliklari\">HTTP G\u00fcvenlik Ba\u015fl\u0131klar\u0131<\/a> ve <a href=\"https:\/\/secradar.net\/dns-sorgulama\">DNS Sorgulama<\/a> ara\u00e7lar\u0131m\u0131zla denetleyin. Kurumsal SSL, DNS ve g\u00fcvenlik hizmetleri i\u00e7in <a href=\"https:\/\/www.ihs.com.tr\/\" target=\"_blank\" rel=\"noopener\">\u0130HS Telekom<\/a>&#8216;u inceleyebilirsiniz.<\/p>\n<div style=\"background:#eef2ff;border:1px solid #c7d2fe;border-radius:12px;padding:16px;margin-top:24px\"><b>SSL, HSTS ve DNS yap\u0131land\u0131rman\u0131z\u0131 s\u00fcrekli denetleyin.<\/b> <a href=\"https:\/\/secradar.net\/register\">SecRadar&#8217;a \u00fccretsiz \u00fcye olun<\/a>; sertifikan\u0131z, g\u00fcvenlik ba\u015fl\u0131klar\u0131n\u0131z veya DNS kay\u0131tlar\u0131n\u0131z de\u011fi\u015fti\u011finde Telegram ya da e-posta ile an\u0131nda uyar\u0131 al\u0131n.<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Ortadaki adam sald\u0131r\u0131s\u0131 (Man-in-the-Middle, MITM), bir sald\u0131rgan\u0131n iki taraf aras\u0131ndaki ileti\u015fimin aras\u0131na gizlice girerek trafi\u011fi dinledi\u011fi, de\u011fi\u015ftirdi\u011fi veya y\u00f6nlendirdi\u011fi bir sald\u0131r\u0131 t\u00fcr\u00fcd\u00fcr. Siz bir bankaya veya e-postan\u0131za ba\u011fland\u0131\u011f\u0131n\u0131z\u0131 san\u0131rs\u0131n\u0131z; oysa t\u00fcm veri \u00f6nce sald\u0131rgan\u0131n elinden ge\u00e7er. MITM, veri h\u0131rs\u0131zl\u0131\u011f\u0131ndan oturum ele ge\u00e7irmeye kadar bir\u00e7ok sald\u0131r\u0131n\u0131n temelini olu\u015fturur. Bu yaz\u0131da MITM sald\u0131r\u0131s\u0131n\u0131n nas\u0131l \u00e7al\u0131\u015ft\u0131\u011f\u0131n\u0131, hangi y\u00f6ntemlerle &#8230; <a title=\"Ortadaki Adam (MITM) Sald\u0131r\u0131s\u0131 Nedir ve Nas\u0131l Korunulur?\" class=\"read-more\" href=\"https:\/\/secradar.net\/blog\/ortadaki-adam-mitm-saldirisi-nedir\/\" aria-label=\"Read more about Ortadaki Adam (MITM) Sald\u0131r\u0131s\u0131 Nedir ve Nas\u0131l Korunulur?\">Devam\u0131n\u0131 oku<\/a><\/p>\n","protected":false},"author":0,"featured_media":66,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-67","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-guvenlik"],"_links":{"self":[{"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/posts\/67","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/comments?post=67"}],"version-history":[{"count":0,"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/posts\/67\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/media\/66"}],"wp:attachment":[{"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/media?parent=67"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/categories?post=67"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/secradar.net\/blog\/wp-json\/wp\/v2\/tags?post=67"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}