wireshark-ssl-decrypt
https://github.com/m-cetin/wireshark-ssl-decrypt
https://reatang.com/p/golang-https-sslkeylogfile/
Decrypting SSL traffic is an essential skill for security professionals and developers. Here, we'll walk you through how to decrypt SSL traffic in Wireshark using an environment variable SSLKEYLOGFILE. This method allows you to view encrypted traffic in plaintext.
Make sure you have Wireshark installed on your computer. You can download and install Wireshark from the official website.
Open Command Prompt (CMD) as an administrator. Use the following command to create an environment variable SSLKEYLOGFILE:
setx SSLKEYLOGFILE "C:\path\to\keylog.log"
Replace "C:\path\to\keylog.log" with the desired location for your keylog file. This file will store SSL keys for decryption.
Launch Wireshark. Go to "Edit" > "Preferences" and look for "Protocols" > "TLS". Specify the path to your SSLKEYLOGFILE you defined in step 2.
Begin recording SSL traffic in Wireshark as you normally would.
Wireshark will now decrypt SSL traffic and display the plaintext.
浙公网安备 33010602011771号