1,923 questions
Hello Deepak.
Take a look at the article at https://blog.devgenius.io/deep-dive-into-tls-ssl-handshake-using-wireshark-5abfe83560ce.
Bye.
Ensuring Exclusion of Weak Ciphers in TLS Handshake using WireShark and PktMon
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 28.000000000000004%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
DEEPAK KUMPALA
191
Reputation points
I am currently working on enhancing the security of our application communication, specifically focusing on the TLS handshake process. I want to make sure that weak ciphers are not part of the TLS handshake, and I am trying to achieve this using WireShark and the PktMon tool on Windows. I have removed the TLS 1.0 and 1.1 and disabled weak ciphers in TLS 1.2. (In Windows)
I have configured my server (Cloud) to use only strong ciphers, but I would like to validate this by inspecting the TLS handshake packets with WireShark and PktMon. However, I am unsure about the specific steps and filters I need to apply to effectively identify and confirm the exclusion of weak ciphers during the TLS handshake.
Need to know how to use WireShark and PktMon to inspect TLS handshake packets and ensure that weak ciphers are not being utilized? Additionally, if there are specific filters or settings within WireShark or PktMon that I should be aware of to highlight or filter out weak ciphers, that information would be greatly appreciated.
Windows for business | Windows Server | Devices and deployment | Configure application groups
1 answer
Sort by: Most helpful
-
Luigi Bruno 316 Reputation points Volunteer Moderator2023-11-16T17:24:55.8666667+00:00