I am able to decrypt network traffic in Wirehsark by importing the 'key' file in it. However, cannot implement it using pyshark. I came across the filter "decryption_key" in pyshark, but whenever I write: decryption_key="path_to_key", it doesn't work. I am relatively new in this field and just experimenting. Any help would be appreciated. Thanks!
Asked
Active
Viewed 193 times
0
-
What protocol are we even decrypting? TLS? SSH? What version of the protocol? – Ross Jacobs Jun 20 '20 at 03:04
-
We are decrypting TLSv1.3. – Aritri Jun 21 '20 at 04:46
-
TLS1.3 support was recently added to Wireshark, so it won’t have made it into Pyshark yet. – Ross Jacobs Jun 21 '20 at 06:03