Collaborate Disseminate
I know that in TLS 1.2 the client generates PMS (Pre Master Secret) which is used to get master_secret and Key_Block.
Where Key_Block combined with clinet_random and server_random gives us: clientMAC, serverMAC, clientWrite and serverWrite… Continue reading Which Keys TLS uses? [duplicate]
I was reading about TLS1.3 and my question is that are the server hello extensions encrypted? Why is it so and how are they encrypted?
TLS 1.3 has a bit different handshake messages than 1.2 (and older) had. The client is supposed to send DH parameters directly in the first Client Hello message. How do browsers know if that’s what they should do? What if the server suppor… Continue reading How browsers know which TLS handshake to use (1.2 vs. 1.3)
When I am testing mutual TLS handshake performance on TLS1.3 using OpenSSL, I find a very wired thing:
I created two groups of servers and clients:
Server1 has a certificate signed using RSA3072, and Client1 has a certificate signed using… Continue reading Mutual TLS on OpenSSL – When does the server generate the CertificateVerify message?
My Apache web server logs suffer from the dreaded [ssl:error] AH02032: Hostname www.example.com provided via SNI and hostname example.com provided via HTTP are different.
I know what it means and why it happens.
I need to manually reproduc… Continue reading How to manually connect to my web server and send a TLS handshake with a hostname, followed by the HTTP request headers with a different hostname
Blocking inbound TCP segments with ACK=0
Blocking inbound TCP segments with SYN=1
Both prevent external clients from making TCP connections to internal clients, but allow internal clients to connect to outside. How?
This came across to m… Continue reading Block inbound TCP segments with ACK=0 vs Block inbound TCP segments with SYN=1, how are they same?
I am a beginner in learning linux and wifislax tools.
Does the evil twin work with hidden networks? Or by extracting the handshake file and then decrypting it?
Continue reading Hacking a hidden wifi network with an evil twin or a handshake file [closed]
I am developing an application where I am setting up a TLS connection between two devices. I am using TLSv1.3, but when I try to set the cipher suite like this:
String[] protocolCHACHA = new String[1];
protocolCHACHA[0]= "TLS_CHACHA20… Continue reading SSLHandshakeException when using TLSv1.3 and trying to set cipher suite
I have a question for my security class related to the TCP handshake. The question is:
A hacker just set up a TCP connection with a web server in Chicago, Illinois, claiming he is coming in with a source IP address that
clearly belongs to… Continue reading Speed of TCP handshake to prove an IP is spoofed [closed]
We know that in WPA2’s four-way handshake, a MIC is generated in order verify the supplicant (client). But how it is generated? Is something hashed to get the MIC? The PTK (pairwise transient key) depends on the nonces and MAC addresses an… Continue reading How is the MIC (message integrity code) generated in WPA2?