Decrypting ssl/tls with Wireshark

Notes on decrypting ssl/tls traffic with Wirehark

Taken from: https://www.trickster.dev/post/decrypting-your-own-https-traffic-with-wireshark/

Programs using OpenSSL will write ssl/tls keys to the file specified in SSLKEYLOGFILE.

I was not able to use environment expansions like %USERPROFILE%, so this might only work with absolute paths.

$env:SSLKEYLOGFILE="C:\temp\sslkeyfile"
& "C:\Program Files\Mozilla Firefox\firefox.exe"

Configure Wireshark to use the keyfile

• Edit -> Preferences (ctrl-shift-p)
• Protocols -> TLS
• Set (Pre-)-Master-Secret log filename