how do I get a key log file to decrypt traffic on my home network?
#1
So let's say I want to decrypt traffic on my home network. The reason is I am doing a David Bombal CCNA course, and it is introducing wireshark. I determined that it would be helpful to be able to see traffic flowing through my home network, but the packet capture is encrypted with TLS.

So I looked up a tutorial on how to decrypt the packet capture and got this tutorial:

https://unit42.paloaltonetworks.com/wireshark-tutorial-decrypting-https-traffic/

I got to the step with encryption with a key log file. My question is how do I get a copy of this file? This is my home network so I should have one from my packet capture. I need to have one so I can decrypt the traffic.

Could someone help me out here? How do I get the key log file?

I looked up how to do this on Ubuntu and found this:

https://askubuntu.com/questions/1035991/...keylogfile

Still having trouble because even when I run Wireshark from the same terminal I exported environment variable from, it still doesn't generate a keylog file.

Then when I try this tutorial it doesn't show me the log file when I try to open it from wireshark under TLS option:

https://linuxhint.com/decrypt-ssl-tls-wireshark/

Thanks.
Reply
#2
I'll bite.

How exactly are you trying to generate the key log? (note down any commands and drop any private info if needed)
What browser are you using? (version as well)
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Will changing my MAC be good enough to let me get away with this? QMark 7 41,867 03-30-2021, 04:57 AM
Last Post: 139691296921
  [QUESTION] How would you go about forcing a user on a network on a web page? ueax 6 27,844 03-16-2021, 05:40 PM
Last Post: nextlinemail
   Intercepting mobile traffic with mitmproxy enmafia2 2 19,311 03-05-2021, 01:19 AM
Last Post: Wipe_TS
  how to get my rogue AP working with ghost phisher? QMark 12 43,409 08-30-2018, 11:53 AM
Last Post: overfl0wN