Pregunta
I want to decrypt the packets which is using the ciphersuite TLS-DHE-RSA-WITH-AES-256-CBC-SHA.Using Master keys I am able to decrypt the data in wireshark.Still I can't save decrypted wireshark file so I am doing it programmatically.I am having Keyblock which includes client mac,server mac,client write,server write and both client and server iv's .So how can I decrypt encrypted data programmatically?
Solución
Your best bet is probably to fork Wireshark and make a patch which allows you to save decrypted data (then give them the patch to incorporate if they so desire).
They've already done all the hard work, all you need to do is add some basic file I/O, and it also contributes back to the development of a program you're using.
https://stackoverflow.com/questions/16731693
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
Russian