Collaborate Disseminate
I’m testing a new proxy and monitoring the connection using Wireshark, but I’m not seeing any certificate at all. my goal is to find out exactly what sensitive and identifiable data is leaving my router after using this proxy, emphasizing … Continue reading How can I view the TLS 1.2 and 1.3 certificates in Wireshark? [migrated]
I heard recently that WPA2 passwords can be brute forced if somebody captures handshake (which is not very difficult). Can somebody tell if a similar method exists for cracking SSH traffic? I mean some method for brute forcing my password … Continue reading Is brute force for SSH similar to cracking WPA2 handshake?
I am wondering about the different TLS records sent by the Client and Server. In TLS 1.2, there are 10 different Handshake Protocol types as defined here.
I implemented a TLS monitoring tool that lets me inspect different TLS packets/recor… Continue reading Can any Handshake Protocol message type sent by Server or Client? [closed]
Having some trouble communicating with our SharePoint Online (SPO) site.
I am simply going to a browser (IE v11) on a Windows Server 2012 R2 VM and navigating to the SPO home page.
In Wireshark I see this trace where <ip_SPO> is the … Continue reading TLS1.2 Handshake to SharePoint Online Failing from Windows Server 2012 R2
After looking at many explanations about the TLS handshake I noticed that sometimes the server starts with the change cipher spec command and sometimes the client starts with it.
I’m wondering why. Is it due to the type of key exchange pro… Continue reading Who starts with change cipher spec in a TLS handshake?
I know that in TLS 1.2 the client generates PMS (Pre Master Secret) which is used to get master_secret and Key_Block.
Where Key_Block combined with clinet_random and server_random gives us: clientMAC, serverMAC, clientWrite and serverWrite… Continue reading Which Keys TLS uses? [duplicate]
I was reading about TLS1.3 and my question is that are the server hello extensions encrypted? Why is it so and how are they encrypted?
TLS 1.3 has a bit different handshake messages than 1.2 (and older) had. The client is supposed to send DH parameters directly in the first Client Hello message. How do browsers know if that’s what they should do? What if the server suppor… Continue reading How browsers know which TLS handshake to use (1.2 vs. 1.3)
When I am testing mutual TLS handshake performance on TLS1.3 using OpenSSL, I find a very wired thing:
I created two groups of servers and clients:
Server1 has a certificate signed using RSA3072, and Client1 has a certificate signed using… Continue reading Mutual TLS on OpenSSL – When does the server generate the CertificateVerify message?
My Apache web server logs suffer from the dreaded [ssl:error] AH02032: Hostname www.example.com provided via SNI and hostname example.com provided via HTTP are different.
I know what it means and why it happens.
I need to manually reproduc… Continue reading How to manually connect to my web server and send a TLS handshake with a hostname, followed by the HTTP request headers with a different hostname