Hi, I'm new to Wireshark and I will find time to learn it. But at the moment I need help to identify and possible DES encrypted traffic on my network. This is to help with system upgrades that are taking place. I don't need to decrypt anything just identify it and its source/destination. Cheers asked 27 Nov '14, 04:29  GeordieUK |
One Answer:
DES encrypted data is simply a stream of binary data and there is no sign or signature that "marks" it as DES encrypted. All you can do is to analyze the protocols beeing used to transmit the data and then try to find signs for DES usage, like SSL/TLS ciphers in the handshake, etc. Regards answered 27 Nov '14, 07:56  Kurt Knochner ♦ |
