I'm trying to decrypt an ssl conversation using the ssl key.
This is working in the wireshark gui.
Is there a way I can decrypt via cli to a pcap file?
asked 27 Sep '11, 02:34
The short answer: Wireshark/tshark aren't capable of saving decrypted packets to a pcap file.
See message thread starting at http://www.wireshark.org/lists/wireshark-users/201105/msg00000.html for some (possibly) relevant information.
See especially: http://www.wireshark.org/lists/wireshark-users/201105/msg00002.html
A Google search may find further info.