[Snort-users] SSL and Snort
jfh at ...5250...
Mon Feb 6 15:14:41 EST 2012
On Mon, 6 Feb 2012 11:51:32 -0500
PS <packetstack at ...11827...> wrote:
> Does anyone know of a free/opensource tool which could decrypt ssl
> and make accessible to snort?
> Something like a mitm proxy with the capability to pass the
> unencrypted packets over to snort for analysis.
> Victor Pineiro
Someone sent this to the Emerging Threats list a while back:
Seems like it should work for a regular linux-based router, though
getting the info to snort would probably take a little work.
IT Security Engineer
Office of Information Security and Compliance
University of Florida
More information about the Snort-users