[Bro] How does Bro decrypt https traffic?
Mark W. Jeanmougin
markjx at gmail.com
Tue Jul 10 02:55:13 PDT 2018
Hello Star!
bro does not support https decryption out of the box.
Normally, an enterprise would deploy an "https Decryption Appliance". That
would perform the decryption and create a stream of unencrypted traffic to
go to your Network Security devices, like bro.
MJ
On Tue, Jul 10, 2018 at 5:00 AM Star <huzhenming36 at gmail.com> wrote:
> Hi friends
> My name is Star and I am from Beijing, China,I am working on
> a project for pcap traffic analysis.Now I want to decrypt https traffic, I
> don't know if bro supports it?
>
>
>
>
> Thank you
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20180710/fb486701/attachment.html
More information about the Bro
mailing list