Created
March 13, 2016 17:48
-
-
Save LeeBrotherston/1a0ae1aedd968af1fce3 to your computer and use it in GitHub Desktop.
Importing a new signature to FingerPrinTLS
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1 - Capture the traffic with fingerprintls *or* read a pcap containing the traffic, | |
| assuming current version from git use '-j' to specify a location to save fingerprints | |
| and '-l' for log location: | |
| sudo ./fingerprintls -i en1 -j unknown_fingerprints.json -l log.json | |
| or | |
| sudo ./fingerprintls -p previous_capture.pcap -j unknown_fingerprints.json -l log.json | |
| This will write new fingerprints to "unknown_fingerprints.json", they will be in the | |
| format of one fingerprint per line in JSON format. | |
| 2 - Add the new fingerprint to the fingerprints.json file (copy & paste in a text editor is fine). | |
| 3 - Recompile the fingerprints database: | |
| ../scripts/fingerprintout.py -b ../fingerprints/fingerprints.json | |
| 4 - You should have a new "tlsfp.db" in the local directory which fingerprintls will use once restarted. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment