.

TLS MITM

<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Fri Mar 16, 2012 8:59 pm

TLS MITM

I need to do a TLS MITM where I accept a TLS connection coming in, view the plain text decrypted data and then send the traffic to another destination. This is a proof of concept with an embedded device. The connection is not HTTPS but TLS using a PSK so things like SSLSTRIP will not work.

I have been able to use ncat and my device successfully negotiates but I cant figure out how to forward it on. Any insight is appreciated.

-C
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Sat Mar 17, 2012 12:13 pm

Re: TLS MITM

Would ettercap support this, or is that only HTTPS as well?

What about setting up a netcat relay for the second piece of the ncat connection? http://www.sans.org/security-resources/ ... eet_v1.pdf
The day you stop learning is the day you start becoming obsolete.
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Sat Mar 17, 2012 12:41 pm

Re: TLS MITM

I'm pretty sure we tried that but I'll circle back on Monday. Thanks

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 2 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software