Ask Your Question

Matty's profile - activity

overview network karma followed questions activity
2023-05-07 21:38:48 +0000 received badge  Notable Question (source)
2023-05-07 21:38:48 +0000 received badge  Popular Question (source)
2022-08-10 21:30:44 +0000 asked a question Run tshark in AWS lambda

Run tshark in AWS lambda How do I get tshark running inside of AWS lambda? I've tried building from source, but I believ
2022-04-21 00:43:47 +0000 marked best answer Command line PCAP decyryption with TLS Key log file

I have a PCAP file I am trying to decrypt, and a TLS keylog file produced by nodejs (using the --tls-keylog option)

I am trying to convert the HTTP messaging inside the PCAP file into WARC format, but cannot figure out how to use the command line tshark util to decrypt the relevant traffic. I can do so in the Wireshark UI by updating TLS PMS setting and then right clicking and choosing to follow the HTTP stream, how can I recreate this behaviour with tshark?

I'd also like to print out the "follow" view for _all_ HTTP connections in a PCAP file (including HTTPS and HTTP2), in JSON format if possible? thanks!
2022-04-21 00:43:47 +0000 received badge  Scholar (source)
2022-04-11 13:27:12 +0000 asked a question Command line PCAP decyryption with TLS Key log file

Command line PCAP decyryption with TLS Key log file I have a PCAP file I am trying to decrypt, and a TLS keylog file pro
Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service
Powered by Askbot version 0.10.2