saleemrashid / frida-sslkeylog Goto Github PK
View Code? Open in Web Editor NEWFrida tool to dump an NSS Key Log for Wireshark, from a process using dynamically linked OpenSSL (or BoringSSL)
Frida tool to dump an NSS Key Log for Wireshark, from a process using dynamically linked OpenSSL (or BoringSSL)
I am a college student, very lucky to see your article about hook, let me benefit a lot. The name of this post is《frida-sslkeylog》. I am very interested in the knowledge of generating keylog in TLS. Thank you for your selfless sharing. However, the tls1.3 protocol cannot generate keylogs in the code you provided. Due to my lack of ability, no good method has been found to generate tls1.3 keylogs. Could you please provide a solution or update the method of tls1.3 generating keylog in GitHub. Thank you for your support.I will be very grateful for your support.
when I used your project on twitter app,I can't get a ssllog. what's more,I can‘t Decrypt SSL message ,even if I get a ssllog.
The script is able to retrieve some keylog.
But sometimes pyasn1.error.SubstrateUnderrunError is thrown:
Exception in thread Thread-1:
Traceback (most recent call last):
File "D:\Python\Python38-32\lib\threading.py", line 932, in _bootstrap_inner
self.run()
File "D:\Python\Python38-32\lib\threading.py", line 870, in run
self._target(*self._args, **self._kwargs)
File "D:\Python\Python38-32\lib\site-packages\frida_tools\application.py", line 604, in _run
work()
File "frida-sslkeylog-master/sslkeylog", line 37, in <lambda>
self._reactor.schedule(lambda: self._on_message(message, data))
File "frida-sslkeylog-master/sslkeylog", line 51, in _on_message
self._on_session(data)
File "frida-sslkeylog-master/sslkeylog", line 57, in _on_session
asn1Sequence, _ = decoder.decode(data)
File "D:\Python\Python38-32\lib\site-packages\pyasn1\codec\ber\decoder.py", line 1446, in __call__
raise error.SubstrateUnderrunError('%d-octet short' % (length - len(substrate)))
pyasn1.error.SubstrateUnderrunError: 68-octet short
When it happens, i2d_SSL_SESSION returns a very short length (13 in my case).
Maybe some status check or error check should be performed before trying to encode it?
in my test master Key is right,RSA Session-ID is not work.may be need CLIENT_RANDOM.what's the reason.
This script worked reliably with frida 12.2 to frida 16.0.8 (February 2023). I've recently updated frida_server and frida_tools to 16.1.3, and now the script cannot decode the large ASN1 blobs.
wcwidth, prompt_toolkit, _frida, frida and frida-tools all took updates...
Debug pointers welcome.
Need to update requirements
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.