WebApp Sec mailing list archives
RE: Https sniffer
From: "Lyal Collins" <lyal.collins () key2it com au>
Date: Wed, 20 Jul 2005 18:51:37 +1000
I've tried ssldump recently but only obtained decrypts with a very restricted set of SSL parameters - RSA and 3DES in my case. I don't have the coding skills to approach this in order to resolve the issues either, sorry. Your mileage may vary... Lyal -----Original Message----- From: Hugo Fortier [mailto:hfortier () recon cx] Sent: Wednesday, 20 July 2005 1:22 PM To: Phalak, Kashmira Vijay Cc: vuln-dev () securityfocus com; webappsec () securityfocus com Subject: Re: Https sniffer Hi Kashmira, There is ssldump, it's not a HTTP Analyser but a SSL analyser you can find it at http://www.rtfm.com/ssldump/. ssldump will decrypt the data if provided with the good private key. Hugo On 19-Jul-05, at 8:58 PM, Phalak, Kashmira Vijay wrote:
Hi All, Does anybody know a good https sniffer which can sniff in promiscuous mode? I tried HTTP Analyzer and it works great, but it does not have support for promiscuous mode. Thanks, Kashmira.
Current thread:
- Https sniffer Phalak, Kashmira Vijay (Jul 19)
- Re: Https sniffer Hugo Fortier (Jul 19)
- RE: Https sniffer Lyal Collins (Jul 20)
- Re: Https sniffer Garth Somerville (Jul 20)
- <Possible follow-ups>
- RE: Https sniffer Asaf Wexler (Jul 20)
- RE: Https sniffer Phalak, Kashmira Vijay (Jul 20)
- RE: Https sniffer Garth Somerville (Jul 21)
- Re: Https sniffer Rogan Dawes (Jul 21)
- Re: Https sniffer Achim Hoffmann (Jul 21)
- RE: Https sniffer Erick Lee (Jul 21)
- RE: Https sniffer Phalak, Kashmira Vijay (Jul 21)
- Re: Https sniffer Hugo Fortier (Jul 19)