This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Hey, do you know wich protocols facebook use when you chat, like somethink, whatch a video...? Wireshark shows me only https with tcp everywhere.

Is it possible to encrypt this to see what protocols are using?

Thx guys!

asked 01 Aug '14, 08:51

Jan%20Muster's gravatar image

Jan Muster
1111
accept rate: 0%


Wireshark shows me only https with tcp everywhere.

because that's what Facebook is using.

Is it possible to encrypt this to see what protocols are using?

You need to decrpyt the traffic, however, that's near to impossible, as you certainly don't have access to the private key(s) of the facebook servers, do you?

If you are trying to decrypt the traffic of your own browser, you could tell the browser to expose the SSL/TLS session keys and then use that to decrypt the https traffic. Alternatively you can use a proxy that is able to do SSL/TLS decrpytion (like Fiddler). See my answer to a similar question.

http://ask.wireshark.org/questions/29936/decrypting-ssl-traffic-in-wireshark-processed-by-sslsniff

and some other resources.

http://www.cloudshield.com/blog/advanced-malware/how-to-decrypt-openssl-sessions-using-wireshark-and-ssl-session-identifiers/
http://www.root9.net/2012/11/ssl-decryption-with-wireshark-private.html

Regards
Kurt

permanent link

answered 03 Aug '14, 10:14

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×16

question asked: 01 Aug '14, 08:51

question was seen: 2,745 times

last updated: 03 Aug '14, 10:14

p​o​w​e​r​e​d by O​S​Q​A