Project

General

Profile

Actions
Copy link

Support #2690

closed

Is ssl decrytion supported in suricata?

Added by Hao Han over 5 years ago. Updated about 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Affected Versions:
Label:

Description

Can we use suricata to analyze https traffic with the server's private key and certification?
Or is there any tool could be used to decrypt the ssl traffic with the server's private key?

Actions
Copy link
 #1

Updated by Andreas Herz over 5 years ago

There is no option for that within suricata. You would need to use external tools (there are some commercial ones) and feed that to suricata. Keep in mind breaking TLS creates a lot of issues and will be harder with TLS 1.3

Actions
Copy link
 #2

Updated by Victor Julien about 5 years ago

  • Status changed from New to Closed
Actions
Copy link

Also available in: Atom PDF