Decrypting HTTPS Traffic With Wireshark

Рет қаралды 108,096

Күн бұрын

In this video, I cover the process of decrypting HTTPS traffic with Wireshark. Wireshark is a free and open-source network protocol and traffic analyzer that can be used to capture network traffic, troubleshoot networks, and much more.
You can register for part 2 of this series for free here: bit.ly/3yJqT3c
//LINKS
Download Wireshark: www.wireshark....
PCAP Exercise Files: bit.ly/3yH25Jd
Video Slides: bit.ly/3lcZEWH
Register For Part 2 Of This Series: bit.ly/3yJqT3c
Get 100$ In Free Linode Credit: bit.ly/39mrvRM
//PLATFORMS
BLOG ►► bit.ly/3qjvSjK
FORUM ►► bit.ly/39r2kcY
ACADEMY ►► bit.ly/39CuORr
//SOCIAL NETWORKS
TWITTER ►► bit.ly/3sNKXfq
DISCORD ►► bit.ly/3hkIDsK
INSTAGRAM ►► bit.ly/3sP1Syh
LINKEDIN ►► bit.ly/360qwlN
PATREON ►► bit.ly/365iDLK
MERCHANDISE ►► bit.ly/3c2jDEn
//BOOKS
Privilege Escalation Techniques ►► amzn.to/3ylCl33
Docker Security Essentials (FREE) ►► bit.ly/3pDcFuA
//SUPPORT THE CHANNEL
NordVPN Affiliate Link (73% Off) ►► bit.ly/3DEPbu5
Get $100 In Free Linode Credit ►► bit.ly/39mrvRM
Get started with Intigriti: go.intigriti.c...
//CYBERTALK PODCAST
Spotify ►► spoti.fi/3lP65jv
Apple Podcasts ►► apple.co/3GsIPQo
//WE VALUE YOUR FEEDBACK
We hope you enjoyed the video and found value in the content. We value your feedback, If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms.
//THANK YOU!
Thanks for watching!
Благодарю за просмотр!
Kiitos katsomisesta
Danke fürs Zuschauen!
感谢您观看
Merci d'avoir regardé
Obrigado por assistir
دیکھنے کے لیے شکریہ
देखने के लिए धन्यवाद
Grazie per la visione
Gracias por ver
شكرا للمشاهدة
-----------------------------------------------------------------------------------
#Cybersecurity#BlueTeam

Пікірлер: 81

@JohnSmith-zn3js 2 жыл бұрын

These videos have been an invaluable source of information and instruction for me. This man is definitely a 'guru' in IP Sec and I'm sure too many more specific fields to list!! Thank you so much for the tutorials Sir!!

@grim789 2 жыл бұрын

This should be fun. I would love to see a video using wireshark intercepting and reading USB traffic. Love your content man one of my favorite channels!

@HackerSploit 2 жыл бұрын

Much appreciated, thank you for the video suggestion. I will add it to the video todo list.

@aryamargax 2 жыл бұрын

That was really, really good. Seeing Wireshark being applied in a Malware Analyst/Threat Hunter perspective in a real-world scenario really made it 1000% more exciting. I did the lab myself as I watched the video and documented the whole process in my blog. Very appreciated.

@kompsec686 2 жыл бұрын

That's a great idea.. as a graduate student about to enter the security workforce, a write-up of this process would be a great talking point in interviews.

@yourlinuxguy 10 ай бұрын

Can we get the name of your blog?

@x0rZ15t 2 жыл бұрын

I love Wireshark, and I think your videos are great starting point for anyone trying to learn infosec. Thank you for the effort you put into your videos!

@FeFeronkaMetallica 2 жыл бұрын

This is not a big deal, the real question is how to capture those keys.

@omairtech6711 Жыл бұрын

LOL Yeah. A big bummer for me.

@siraxlrose5659 4 ай бұрын

With a man in the middle attack

@ujjwal_v_nath 4 ай бұрын

Exactly

@isaacmihaeli3261 Жыл бұрын

Kudos to the instructor for such a great tutorial. It opened my eyes to what Wireshark can do and it's capabilities.

@jackwilson8518 6 ай бұрын

Disclaimer for black hats: he has the key because he is executing this for a client. Should be obvious due to every video he makes is from a security perspective and not an attack😅

@jyotipriyasaha4094 2 жыл бұрын

Hello Sir, May I know why are you excluding SSDP protocol from the search?

@tahersadeghi6773 Жыл бұрын

Good video. You need to slow down a bit and explain why you choose a certain option. Thank you.

@Meganano 2 жыл бұрын

top content this week thank you alexis👊🤓

@merzaksadi Жыл бұрын

you have a key and you show me how to open the door?

@gamereditor59ner22 2 жыл бұрын

Thanks for the information and keep it up!!!

@alex595659 10 ай бұрын

how did you have the key ??

@mithilabandara3439 2 жыл бұрын

But how we capture keys in our system 🙄

@believeit5450 2 жыл бұрын

Really love your teaching method , clear and sweet . wish you can add wireshark packet analysis for Ransomware too and give us tip to find indicator of compromise from it too

@HackerSploit 2 жыл бұрын

Will be covering this in the future.

@imperim Ай бұрын

@@HackerSploit we are in future now 😁

@Kiddie91 2 жыл бұрын

Nice tutorial thank you. By the way, is there any cheat sheet for wire shark filters?

@TheTubejunky 2 жыл бұрын

Awesome information! Question: The traffic capture logs can be very long correct? If this attack has happened some time ago would it be very difficult (time consuming) to find the ORIGINAL "GET" request that was the reason for infection?

@andynl6443 2 жыл бұрын

Title: You've got my attention. Better be more then only IP adressess☺

@andynl6443 2 жыл бұрын

He delivered 👍

@salaheddinebnokhawarizm6348 2 жыл бұрын

i followed you since you had only 340 subscribers brother. can you return again about hacking os system and android thanks a lot of brother..i wish you success and healthy and your family too

@hackersthathelplearning4819 2 жыл бұрын

Thank you for these tutorials!

@MostWanted17O1 2 жыл бұрын

a video on how to retrieve the certificates while capturing would be great

@prathamkishore Жыл бұрын

But where are we actually decrypting the SSL Protocol? Video title say the same......

@firosiam7786 2 жыл бұрын

Would this series help someone get into a base level job what would be the path to follow to get there

@Sk1pperCS 11 ай бұрын

thank you. Very informative video.

@broom-closet Ай бұрын

With bettercap and ettercap man in the middle attacks are simple to do

@jucarasfeminista 5 ай бұрын

How would I find these keys in a .pcap that I am normally accessing on the internet?

@Bharath-wb8uy 2 жыл бұрын

Love your content buddy

@testchanel9992 5 ай бұрын

Thank you a lot!

@ItsYoBoy9 2 жыл бұрын

Your Intro sounds like Stranger Things theme music😅😁

@mattplaygamez 2 жыл бұрын

Can you maybe make a video about HTTPS (certificate) spoofing. I think you can also decrypt it with wireshark. Nice vid btw.

@knife_is_op951 2 жыл бұрын

Nobody ( human/ normal pc) can decrypt HTTPS traffic without private key of server.

@mattplaygamez 2 жыл бұрын

@@knife_is_op951 that is why i asked certificate spoofing

@zyghom Жыл бұрын

Asante sana!

@FFxO 2 жыл бұрын

i cant decrypt those SSL cert from GlobalSign but Im able to decrypt LetsEncrypt. Thats strange..

@majiddehbi9186 2 жыл бұрын

thx very good content and interesting one

@udemeumana373 8 ай бұрын

Please I can't download the files, Is there any other way of getting them?

@continnum_radhe-radhe Жыл бұрын

❤❤❤

@ayeshanaveedr5529 2 жыл бұрын

How much for Android payloads decompile n compile n for signature

@dualsensedynasty 2 жыл бұрын

Hii,, Do you know any tools to sniff https traffic. ettercap and other tools sniff only http traffic. Is there any tools to capture HTTPS?

@PrabhatKumar-tk8oy 2 жыл бұрын

Please make a video on Darknet chip

@badzia333 2 жыл бұрын

How did you get those ssl/tsl keys? Is wireshark able to intercept those keys exchange and Save to file or did you use some other tools? Good video, keep the work.

@LadyLatency 2 жыл бұрын

in the real world you either find the keys on a host after exploiting a network /MITM or you have access to the keys another way such as if you are on the dev/IT team and you need to troubleshoot your application traffic, so you just load the keys into wireshark to be able to decrypt and analyze the traffic.

@Buffer0verflow 2 жыл бұрын

@@LadyLatency thank you for explaining this. Was wondering the same question myself!

@badzia333 2 жыл бұрын

What is the key that Wireshark use to decrypt the traffic? Is it private key took from server or synchronous key that is generated during SSL/TSL negotiation?

@prashantpal8753 2 жыл бұрын

Thx bro❤😊

@samsepi0l227 2 жыл бұрын

i cant wait for the red team videos! (if you didnt and want to do.)

@HackerSploit 2 жыл бұрын

We already have a red team playlist.

@samsepi0l227 2 жыл бұрын

@@HackerSploit going to watch it! thank you very much.

@samsepi0l227 2 жыл бұрын

@@HackerSploit how i couldnt guess btw. you are helping this community very much.

@kronoxconversationcenter1316 2 жыл бұрын

so can we see encrypted ssl password and usernames?

@愛 2 жыл бұрын

didnt know this is possible

@rafaeljimenez7535 Жыл бұрын

good.

@jimikalby3109 2 жыл бұрын

Nice

@profess0rrr Жыл бұрын

not going to lie, whenever you start by saying heres the keys, i immediately check out because this doesnt really show you the process from start to finish you expect people to know information to make use of the tutorial more so this way and instantly lost interest and looked elsewhere doesnt matter how well you explaining the rest of the video, because not all use cases will be monitoring a browser.. some times its an external device over wifi or internalized in lan and i dunno just feels very incomplete and shoveled into a very specific use case.. and btw if you capture har files they litterally have full SSL traffic noted and something like charles proxy can read this just fine and exports curl from it even, stuff wireshark doesnt even do or isnt clear it can perform