Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

Decrypting Application Data with Private Key File

I captured packets with Wireshark, but during the packet capture session, I did not have access to a private key to decrypt data. I was able to get the private key for the server and add it, but when I look at packets with Application Data, the contents still appears to be encrypted.

I read the following article, and it appears I'm meeting the criteria for decrypting the packets.

Decrypt SSL/TLS Packets

I just wasn't sure if decrypting can be done asynchronously from the packet capture. Is it possible to decrypt application data if the private key is only available after the packet capture session?