Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-10-31 13:55:25 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update client-simulation.wiresharked.md

Browse Source
This commit is contained in:
Dirk Wetter
2020-01-16 22:46:43 +01:00
committed by GitHub
parent 86afeabf8f
commit ac7a20f018
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
etc/client-simulation.wiresharked.md
View File

@@ -1,13 +1,13 @@
This file contains client handshake data manually created from Wireshark. This file contains client handshake data manually created from Wireshark.
The content needs to be added to client-simulation.txt which other part The content needs to be added to client-simulation.txt which other part
comes from the SSLlabs client API via update_client_sim_data.pl comes from the SSLlabs client API via ``update_client_sim_data.pl``
The whole process is done manually. The whole process is done manually.
## Instructions how to add a client simulation: ## Instructions how to add a client simulation:
* Start wireshark at a client or router. Best is during capture to filter for the target of your choice. * Start wireshark at a client or router. Best is during capture to filter for the target of your choice.
* Make sure you create a bit of encrypted traffic to your target. Attention, privacy: if you want to contribute, be aware that the ClientHello contains the target hostname (SNI). * Make sure you create a bit of encrypted traffic to your target. Attention, privacy: if you want to contribute, be aware that the ClientHello contains the target hostname (SNI).
* Make sure the client traffic is specific: For just "Android" do not use a browser! Use the play store app e.g.. * Make sure the client traffic is specific: For just "Android" do not use a browser! Be also careful with Google Apps, especially on older devices as they might has an own TLS stack
* Stop recording. * Stop recording.
* If needed sort for ClientHello. * If needed sort for ClientHello.
* Look for the ClientHello which matches the source IP + destination you had in mind. Check the destination hostname in the SNI extension so that you can be sure, it's the right traffic. * Look for the ClientHello which matches the source IP + destination you had in mind. Check the destination hostname in the SNI extension so that you can be sure, it's the right traffic.