TLS Handshake Deep Dive and decryption with Wireshark
Vložit
- čas přidán 20. 05. 2024
- Warning! We go deep in this video to explain how the TLS handshake is completed. Warning! This is a technical deep dive and covers a lot of detail including SSL decryption and discusses RSA, Public and Private Keys, symmetric key exchange and lots more.
// Wireshark pcap //
davidbombal.wiki/tlsedpcap
// Ed's TLS course //
davidbombal.wiki/edtls49
Use coupon code: "BombalTLS" to get for $49
// MENU //
00:00 ▶️ Introduction
02:11 ▶️ How SSL/TLS is shown in a browser
02:40 ▶️ Pre-Requisites
05:15 ▶️ Data Integrity/Hashing
06:27 ▶️ Potential Problems with Hashing/man in-the-middle attack
07:32 ▶️ Message Authentication Code
10:09 ▶️ Prerequisites continued
11:51 ▶️ Symmetric Encryption
12:45 ▶️ Asymmetric Encryption
17:00 ▶️ Private and Public Keys
20:05 ▶️ Signatures
21:55 ▶️ Protocols
22:50 ▶️ SSL/TLS Handshake, Client Hello and Server Hello
28:35 ▶️ Client Hello and Server Hello in Wireshark
34:09 ▶️ Certificate
35:12 ▶️ Server Done
35:35 ▶️ Server Hello, Certificate, Server Hello Done in Wireshark
36:51 ▶️ Client Key Exchange
50:26 ▶️ Client Key Exchange in Wireshark
51:39 ▶️ Client Change Cipher Spec and Finished/Encrypted Verification
54:08 ▶️ Server Change Cipher Spec and Finished/Encrypted
56:10 ▶️ SSL/TLS Handshake in Wireshark
57:44 ▶️ Decrypting a PreMaster Key with a Private Key in Wireshark
1:03:15 ▶️ Where to get in contact with Ed to learn more
// David's SOCIAL //
Discord: / discord
Twitter: / davidbombal
Instagram: / davidbombal
LinkedIn: / davidbombal
Facebook: / davidbombal.co
TikTok: / davidbombal
CZcams: / davidbombal
// Ed's SOCIAL //
Twitter: / ed_pracnet
CZcams: / @practicalnetworking
// Ed's TLS course //
davidbombal.wiki/edtls49
Use coupon code: "BombalTLS" to get for $49
// More detail on Ed's CZcams channel and website //
Asymmetric Encryption explained from a Practical Perspective:
www.practicalnetworking.net/p...
RSA Algorithm:
• RSA Algorithm - How do...
DH Algorithm:
• Diffie-Hellman Key Exc...
Practical TLS - Crypto & SSL/TLS foundation:
• Practical TLS - Free L...
// MY STUFF //
www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
tls
tls decryption
ssl
crypto
cryptography
ssl decryption
tls wireshark
tls decryption wireshark
tls tunnel
tls handshake
tlsp
tls explained
tls tunnel
vpn
tls protocol
tls handshake explained
tls 1.3
TLS
Transport Layer Security
Handshake
TLS Handshake
Crypto
Cryptography
security
wireshark
wireshark tutorial
wireshark packet analysis
tls decryption
tls decryption wireshark
tls 1.3 decryption
tls decryption wireshark
tls tunnel vpn free internet
tls decryption palo alto
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
#tls #ssl #wireshark - Věda a technologie
// Wireshark pcap //
davidbombal.wiki/tlsedpcap
// Ed's TLS course //
davidbombal.wiki/edtls49
Use coupon code: "BombalTLS" to get for $49
// MENU //
00:00 ▶ Introduction
02:11 ▶ How SSL/TLS is shown in a browser
02:40 ▶ Pre-Requisites
05:15 ▶ Data Integrity/Hashing
06:27 ▶ Potential Problems with Hashing/man in-the-middle attack
07:32 ▶ Message Authentication Code
10:09 ▶ Prerequisites continued
11:51 ▶ Symmetric Encryption
12:45 ▶ Asymmetric Encryption
17:00 ▶ Private and Public Keys
20:05 ▶ Signatures
21:55 ▶ Protocols
22:50 ▶ SSL/TLS Handshake, Client Hello and Server Hello
28:35 ▶ Client Hello and Server Hello in Wireshark
34:09 ▶ Certificate
35:12 ▶ Server Done
35:35 ▶ Server Hello, Certificate, Server Hello Done in Wireshark
36:51 ▶ Client Key Exchange
50:26 ▶ Client Key Exchange in Wireshark
51:39 ▶ Client Change Cipher Spec and Finished/Encrypted Verification
54:08 ▶ Server Change Cipher Spec and Finished/Encrypted
56:10 ▶ SSL/TLS Handshake in Wireshark
57:44 ▶ Decrypting a PreMaster Key with a Private Key in Wireshark
1:03:15 ▶ Where to get in contact with Ed to learn more
// David's SOCIAL //
Discord: discord.com/invite/usKSyzb
Twitter: twitter.com/davidbombal
Instagram: instagram.com/davidbombal
LinkedIn: www.linkedin.com/in/davidbombal
Facebook: facebook.com/davidbombal.co
TikTok: tiktok.com/@davidbombal
CZcams: czcams.com/users/davidbombal
// Ed's SOCIAL //
Twitter: twitter.com/ed_pracnet
CZcams: czcams.com/channels/KmU-GKiukM8LYjkJFb8oBQ.html
// Ed's TLS course //
davidbombal.wiki/edtls49
Use coupon code: "BombalTLS" to get for $49
// More detail on Ed's CZcams channel and website //
Asymmetric Encryption explained from a Practical Perspective:
www.practicalnetworking.net/practical-tls/rsa-diffie-hellman-dsa-asymmetric-cryptography-explained/
RSA Algorithm:
czcams.com/video/Pq8gNbvfaoM/video.html
DH Algorithm:
czcams.com/video/KXq065YrpiU/video.html
Practical TLS - Crypto & SSL/TLS foundation:
czcams.com/play/PLIFyRwBY_4bTwRX__Zn4-letrtpSj1mzY.html
// MY STUFF //
www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
David! It was a ton of fun doing this video with you! Thanks for the opportunity! I love sharing some of the wonders of the SSL and TLS protocols =). Cheers!
CIA triad is about confidentiality integrity and availablity.
Not authentication
@ some where around in video at 3 to 4 min u mentioned it incorrectly..
@@dhirajverma8600 Some people put "authentication" in "Integrity". Some people list it as it's own service (as I did). This was intentional because achieving all three requires separate processes, which I use to frame the rest of my course picking apart TLS/SSL (that is in fact where these slides are from, is my TLS course).
Thank you so much for sharing your knowledge with all of us Ed!
Heading over to your channel 😀
@@israel-ie4vp
OMG! After 25 years I finally got my head around how those handshakes work and how security is done. Thank you very much, gentlemen!
Awesome to see Ed on your channel, he is without any doubt one of the best networking teachers I came accross. Especially him and Jeremy helped me a lot in passing my CCNA - actually just today!
David this type of content is amazing. I am loving these deep dives you are doing with other SMEs. This content is extremely helpful and I greatly appreciate you working out offer code deals to get content from the SMEs at a discount. Just purchased Ed’s TLS course and Chris’ wireshark course. Super excited to go through both of them! Keep these deep dives coming, the real world examples and the heavy usage of wireshark packet captures to demonstrate what is actually happening is VERY helpful. There are lots of resources online and offline with all the basics, I appreciate you diving into how things really work so we can get a better foundation to design and troubleshoot from. Keep this up, I’m looking forward to more protocols and more deep dives!
Cheers, Kyle. Happy to do more of these =)
Thank you very much David for having Ed from practical networking on your show.I am very delighted to see him with you
Great to see this collaboration with Ed, been following his channel for a while now. He has a very good, natural, delivery style and hits all the detail without cluttering it up with unnecessary info. Fair play David for throwing some exposure his way.👏👏
Hi Frack =). Thanks for the kind words. It was loads of fun to do the collab with David !
@@PracticalNetworking Great explanation
Thank you Devid and Ed Harmoush :) for this video 🙏
I think this is the only video on CZcams that explains the TLS handshake in such detail.
Superb presentation. The depth and abliity to present these complex topics in such a manner takes real skill. Ed i'm signing up to your SSl course tonight, i am tight but you've put so much work in these videos i feel you deserve something back.
This is a Gold mine!! I have been trying to find this explanation for quite sometime. Awesomely explained and i love the passion Ed. So the first thing i do support Ed by subscribing to his course and ensuring the knowledge stays with me in my repo. Thank you both of you!! Keep up the good work Ed and David. God Bless
Cheers Avinash. Kind of you to say! Glad you enjoyed the course.
Amazing , I dont think so anyone can explain TLS with this much detail and in such a simple and crisp way. Love your work David and Ed. I never comment of videos but this one has made me to to comment and follow both of you!!!
Glad you enjoyed this, Kamal. Cheers !
I appreciate that David acts as an mediator between all these professionals and starting hackers, who are trying to find their way. Great concept.
Wow... I'm simply blown away with this content---between this and Chris Greer, I am learning so much about how networking works---beyond what I've learned in my career in the support trenches.
I'm going to have to watch this one again--equipped with a notebook, and then go hit the site and buy the full course to expand that knownledge. Thanks for doing this, both yourself and Ed Harmoush!
You're welcome Dwayne!
Congratulations David and Ed on your awards! And thank you for this enjoyable and informative lecture.
Thanks Geoffrey! Cheers!
Watched many Videos on TSL/SSL but the way you explained and even demonstrated with Wireshark was just great.. Thanks for this video
David again thank you so much for making the analogies and simplified explanation.
Thank you to your guest as well, absolutely brilliant presentation.
David you chime in at the perfect time.
Glad you enjoyed it, Millacent. Cheers!
Immediately subscribed to Ed after the first 10 mins of the video. He is so good at explaining the concepts. Thank you David for sharing this collab.
thank you so much for the quality I've never missed these long version video
Thank you!
Quality time spent. Thanks David!
Two masters of the game right here. Ed's channel is absolutely superb. TLS, OSPF, NAT etc can be
quite complicated but he makes it so easy to absorb without leaving any stone unturned. Can't reccomend it enough. Been waiting for this collab. Cheers both 👍
By far the best video on TLS ive ever seen. Amazing.
The best explanation I have ever come across about TLS. Thank you
Thank you David for organising this wonderful session and introducing Ed with his brilliant content and teaching. Kudos to both of you on this presentation and on the awards you got !
Ed is a TREASURE!
@@VideosfromElle
Now it's the about the 7th or more round to watch this and I think I have really decrypted the idea on this !!! Many thanks David and Ed. Keep the deep dive coming.
This was such a great video, I thoroughly enjoyed it and am the information that yall gave! Thank you both for your time putting this together!
Glad you enjoyed it, Justin!
This is good stuff, Ed and David. Thank you for helping me translating this to a network architecture that doesn't know anything about how the load balancer is the middle man to secure an SSL transaction.
I got inspired by David’s positivity to give IT a try about a month. Am in classes now, found Ed H about a week ago and joined his discord. A great teacher!!!
Hey Kaizen =) Welcome to the world of Networking! ^_^
David and Ed are both gold mines of knowledge. Absolutely awesome knowledge sharing on this video, will be rewatching again for deeper knowledge. Loved it
Glad you enjoyed the video Sourav!
Cheers, Sourav!
Disagree, they are decrypting their own data using private key. 😂 . If they can tell how to get private key of another server then I agree wid you.
This was a blast. Appreciate the technical analysis.
Thank you so much for doing this David! Ed is awesome, I watch his CZcams tutorials and love his way of explaining technical concepts. 🌟🌟🌟🌟🌟
Thank you, James =)
It is great to meet ed, It has been always to complicated topics when I was in school. Loved it !!
Great video David and Ed! I would like to dig deeper on:
1. The client key exchange (the inner aspects of it)
2. Certificates
Thanks for the video! Keep on posting more content.
Certificates would be fun to pick apart =)
I had in-person course with Ed, he is absolutely a very very talented instructor, I still remember the day he taught us about subnets, networking stuff, he just made all the things very easy to understand. Glad to see Ed again here!
Even after being in this area since last century it's always refreshing to see a well presented, easy to to follow, informative presentation by people who you can tell know their subject matter inside and out, well done both, thoroughly enjoyable video.
Thanks for the kind words =). Glad you enjoyed the presentation!
Very methodically explained. Thanks to both Ed and David.
Spectacular video. I will probably sign up for Ed's online SSL/TLS course.
Thank you both.
Commendable efforts. Greatly elucidated. Excellent work. Excellent dissemination. Bow down to the knowledge and to the ability to express effectively.
Great Explanation, one of the rarest to have such deep understanding on TLS
The content is so good! I learned so much!! Absolutely appreciate the efforts made to come up with this Technical Deep Dive video
This is wonderful! please do more of these!
Once again Mr David thanks so much. congratulations for hitting 900k followers. you have helped a lot of people. we really appreciate
Thank you David and Ed.
Nicely done, David and Ed! I wish I can force most IT pros to review this video... very useful explainer!
Thank you Wesley! Much appreciated!
Agreed =). Glad you enjoyed it, Wesley!
I I’m an IT tec programmer and already know this , however I watched it whole it’s informative and simplified with real world examples , I do use my own encryption tho!
“You can’t make the whole world be helpful like these guys !”
most of us are lazy.
I searched topics and found him XD
A really helpfull video. You deep dive videos are really good, I always enjoy watching your videos.
it's nice how informative this video is and with minimum amount of advertisement. this is what any video hosting should look like)).
THIS PRESENTATION IS LEGENDARY MATE
Thanks David and Ed 👌Superb stuff.
Very few guys can simplify and explain in so much depth.
Ed Harmoush is the best instructor in the world. I purchased his TLS course last year & could not be more satisfied - highly recommened
Thank you David and Ed
Thank's for this david,nice video 🔥🔥,keep going
Thanks for taking this topic, I was very much interested in knowing more and more about the SSL/TLS handshake. This video really helpful.
Glad you enjoyed it, Harshit =)
Good stuff, David, & Ed. Thank you.
Awesome! Awesome! Awesome! Content!!! One of the best and easy to follow explanations of this subject I’ve seen! Thanks David and Ed!
You're welcome, Chris! Glad you enjoyed it!
Great video!!! I had recently been diving into these concepts more on my own and it was nice that you just happened to post this video lol I am definitely going to re-watch!
Great timing =)
Looks deep enough on my end. Happy to see the references to the individual Request for Comments (RFCs) in Ed's slides.
Thank you Raymond!
=) This was only scratching the surface! ;)
Awesome stuff, enjoyed lot, looking forward to see how Pre-Master secret shared with DH, Thank you both!!
I feel like I have a much better understanding of TLS now, thanks to this video.
Excellent session! Thank you.
Easily one of the best IT related videos I've ever watched....and I've watched hundreds as an online IT student.
Thank you for the kind words, Robert. Glad you enjoyed this !
awesome video as always david. love to see stuff like this
thanks
Glad you enjoyed it =)
Thank you so much for taking up this and making it so simple. I know it is not that straightforward but the concept explained is the best way possible. Not sure if anyone could have explained it better than you did..
Thank you for the kind words, Roshan. Glad you enjoyed it.
Excellent topic and very very detailed explained I will also need to watch this whole video in sections there is so much good information on it that Ed needed to explain quickly I imagine because of the time constraints. We definitely need to have him back with a series of videos instead. Thank you again, Ed is in my opinion one of the smartest ones I have seen on your list of guests and you have had very brilliant engineers on your channel Neil and John Hammond, WireShark Chris, and now Ed for TLS and other network topics explained the right way.
I have read this comment literally on 100s of videos on CZcams, but this one i am writing down in straight from my heart.
Best video on TLS , i could understand it easily with so much details in it.
Thank you for the kind words, Rahul. Glad you enjoyed it =)
This guy is life saver xD. Amazing way of explaining stuff using simple layman analogies
That was wonderful. Great conversation.
Sir, I bought your wireshark course. I think you are the best teacher on this platform.
Thank you Jayson!
Loved this TLS Handshake. I've been learning about https and tls for a while.
Crystal crisp explanations, just like Chris Greer. Really enjoying this videos of yours David!!! To continue further with Ed, perhaps DH overview and what are common issues with ssl where things might get wrong...Cheers!!!
This is practical networking. I subscribed his channel. Coz his explanations & teaching methods are such an amazing. Sorry david, your skills are best but this guy is even better.
Great session. Ed from practical networking is awesome!
this is brilliant! learnt a lot today!
Many thanks for this demo ❣
I've learned more from David than any school. The knowledge bombs he has been dropping are just off the charts.
Thank you Ricardo! Sharing is caring - especially knowledge 😀
Thank you for this enjoyable.
Thanks for the great content David 💯🛐
You’re welcome!
This was really usefull and very clear explained thank you David and Ed.
You're welcome, Makal. Glad you enjoyed it!
I'm only 31 minutes in but this is the one video that finally made me feel comfortable with what's going on with certs!
This is so useful as content. Thank you David and Ed.
Glad you think so!
Glad you enjoyed it, Trist!
@@davidbombal Recently, my company forced me to fix a lot of vulnerabilities on the web server and one of it is related to TLS and SSL. This course is just right on time for me to have an idea what TLS / SSL are about. My thanks again.
Great video and precise explanation!
Thank you David and Ed for this very useful video
You're welcome, Ruhide!
I used Ed's Subnetting and ACL videos when I was prepping for my CCNA. They were excellent and would highly recommend.
Thanks Jamie. Glad they helped you =)
this was just awesome lecture, i have learned a lot TLS and SSL, thank you.
two excellent sources of information, lucky they post
This is great. Loving this
This was damn well done thanks David and Ed learned a lot from this!
Glad you enjoyed it =)
Great stuff. Sure, more of this is appreciated
good video!!
exact syllabus for my uni exam as well
Excellent is the word!!! Thanks David!
Glad you liked it Vignesh!
Love to see another episode of this series...
David and I are in discussion to do another one later this month ;) Stay tuned!
Brilliant Tutorial guys. Will definately take a look at the full course.
Cheers Peter. Glad you enjoyed it !
This is the best presentation I've seen on this subject. In fact I wouldn't have minded even deeper delving into this, and every time David said "Let's not get too deep into this" I was like no, I want to hear more!
I will definitely be adding this channel and also Ed's to my subscribe list.
Glad you enjoyed this =). Consider the course if you want to go really deep on all this stuff. It's easier to go deeper when the foundation has been properly laid.
Thank you for this kind of video very detailed information about TLS. I enjoyed watching it. :)
deep was counted 346 times in 24 mins . truly got deep quickly deeply . I kid , great vid! thx so much
Hey bro can you help me to decrypt my handshake plz I have tried almost all the thing like aircrack all kali linux wordlist, guthub, crackstation, hashcat, hashcat rules and also brutforce attack a entire weak on Google cloud
Free education!
Thank you David and Ed.
You're welcome, Andreius!
Nice video 🔥🔥 btw I am following you from a long time and your videos are very informative . Keep going 🔥☺️
If you followed him a long time, you should have seen the videos he interviewed quite a few speakers on how to start Cyber Security. Dig it in
Thank you
@@tristix3721 Oki bro
TLS, Cryptography, Session mgt, Tunneling everything explained in a single session.. amazing superstuff
Glad you enjoyed it!
Truly fantastic stuff
It was great! Thanks Ed & David! Finally I got the point!
Wohoo!
@@PracticalNetworking I have just started your SSL/TLS training! Recommenended for everyone!
Thanks alot for those deep dive
Real pleasure of knowledge, something reminded, me these days.