threat-hunting, network, cybersecurity Peter Girnus threat-hunting, network, cybersecurity Peter Girnus

Decrypt Traffic with Mitmproxy & Wireshark

In some situations during your career as a security researcher or another area under the cybersecurity umbrella one may need the capability of decrypting application layer traffic such as HTTPS and WebSockets.

To decrypt HTTPS or WebSockets traffic, we can utilize mitmproxy to decrypt SSL/TLS and Wireshark to analyze that traffic. From a security context, we are essentially creating a man-in-the-middle condition locally.

Read More