ISR Computing -
How to decrypt SSL traffic?
How to decrypt SSL traffic?
Things you will need:
1. Wireshark SSL capture (full! meaning you should apply Wireshark filter:
“ssl.handshake.session_id_length == 0”
2. Server's private key.
Cisco SSL or CSM-S module
Issue:
crypto key export rsa PRIVATEKEYNAME pem terminal 3des cisco123
Copy to clipboard and save as C:\sslkey.pem
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-CBC,6BC5A5640D3C9093
<omitted>
-----END RSA PRIVATE KEY-----
Remember that this key is encrypted and protected by the password, so you will need to remove that protection.
C:\OpenSSL\bin>openssl rsa -check -in C:\sslkey.pem
Enter pass phrase for C:\sslkey.pem:
RSA key ok
writing RSA key
-----BEGIN RSA PRIVATE KEY-----
<...omitted>
-----END RSA PRIVATE KEY-----
Microsoft IIS
- Export Private key (.pfx)
- Convert PLCS #12 to PEM format file:
C:\OpenSSL\bin>openssl pkcs12 -in C:\iis_private_key.pfx -out C:\sslkey.pem -nodes
Enter Import Password:
MAC verified OK
Wireshark
In Wireshark, go to:
Edit > Preferences > Protocols > SSL
Add to line “RSA keys list”:
<server ip>,443,http,C:\sslkey.pem
Done!
Search
Moving your apps to Amazon or Miscrosoft Clouds?
We can help you analyze your existing infrastructure, identify the cost savings we can achieve by migrating to a cloud provider. We can then execute end-to-end migration plan of your infrastructure and bringing down your TCO.
Ready for IPv6 Migration?
The Internet is running out of the equivalent of phone numbers - familiar problem, non-trivial solution.
The world has to move to IPv6, with its 128-bit addresses. But that's easier said than done.
Are you fluent in "Linux"?
Learn Linux from a leading expert and quickly master you Linux skills.
Learn how to simplify your workflow and increase your productivity using tips and techniques of the pros.
Ideal training for Corporate IT Beginners and Advanced IT Admins alike.
Who's Online
We have 9 guests and no members online