Adding a token to a https tcp header of a client hello

asked 2018-07-04 07:31:42 +0000

k9k9k9 gravatar image

Hi we are working on a project to see if we can add a token, in to a https packet, and wanted to see if we can use the tcp header of a client hello to do this without having to decrypt the https traffic. If so how to use wireshark to verify it works

edit retag flag offensive close merge delete


Are you referring to RFC 6994, for which Wireshark has support?

Jaap gravatar imageJaap ( 2018-07-04 09:56:03 +0000 )edit

Well the token we have is 40 characters long, and we are looking to add it in to TCP header in plain text. Our project is working on adding the 40 character long text in to the header if possible on a HTTP connection and https connection without trying to decrypt the data which is why im looking to see if we can add it to the header. I have been told it can be done but i wanted to see if it is part of standard TCP RFC practice and if so how it is done.

Many Thanks in advance

k9k9k9 gravatar imagek9k9k9 ( 2018-07-04 12:03:59 +0000 )edit

Please be clear on what protocol you want to add the header. It is either a header added to the transport protocol (TCP), or a header added to the application protocol (HTTP). Either are supported, but distinctly different.

Jaap gravatar imageJaap ( 2018-07-04 13:14:53 +0000 )edit

We would be looking to change the TCP header.

k9k9k9 gravatar imagek9k9k9 ( 2018-07-04 14:00:51 +0000 )edit