Coder Social home page Coder Social logo

tsl-1.0-protocol-bypass-resolution's Introduction

青松云安全 NTA 项目 :全流量镜像旁路解密Https TLS 1.0

基于suricata旁路解密的tls-patch,支持suricata3.0-4.0版本。

依赖openssl-1.0.2o(https://www.openssl.org/source/old/1.0.2/openssl-1.0.2o.tar.gz)

使用方法:

cd $WORK-PATH

wget https://www.openssl.org/source/old/1.0.2/openssl-1.0.2o.tar.gz

tar xf openssl-1.0.2o.tar.gz

cd openssl-1.0.2o ./config --prefix=$PWD/openssl-work && make install

cd suricata

./configure --prefix=$PWD/suricata-work/ --enable-tls-decode=yes  --with-libopenssl-includes=$WORK-PATH/openssl-1.0.2o/openssl-work/include --with-libopenssl-libraries==$WORK-PATH/openssl-1.0.2o/openssl-work/lib

make && make install

tips:

目前版本支持基于rsa密钥协商方式的解密操作。需要将获取到的私钥放到suricata的工作目录中,当前版本支持一个私钥,如果需要
多私钥的方式,在代码中添加密钥对部分代码(具体格式key,server,port)用于获取对应密钥进行解密,对解完密的明文按照各自需求
进行下一步处理

验证方式:

OpenSSL> s_server -key server.key -cipher AES128-GCM-SHA256
OpenSSL> s_client

suricata -i lo -k server.key

tsl-1.0-protocol-bypass-resolution's People

Contributors

ssapym avatar sundw2015 avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.