HTTPs = HTTP + SSL / TLS. In HTTPS, the communication protocol is encrypted using Transport Layer Security (TLS) or, formerly, Secure Sockets Layer (SSL). The protocol is therefore also referred to as HTTP over TLS, or HTTP over SSL.
Download the challenge files here
Open the PCAP file in Wireshark, you will find
TLS encrypted data.
We are given the
server.key.insecure key, so we need to import that key in order to decrypt the packets.
There are two ways to get to the
TLS Preferences page:
Edit --> Preferences --> Protocols --> TLS
Right click on a TSL packet --> Transport Layer Security --> Open Transport Layer Security preferences
After you get to the
TLS Preferences page, click on
Edit... next to the RSA keys list.
Then, add the
server.key.insecure file to
Key File and hit
Now, you can see the decrypted packets. You will find the flag in the HTTP packets.
本页面的全部内容在 CC BY-NC-SA 4.0 协议之条款下提供，附加条款亦可能应用。