The latest version of Arkime (The Sniffer Formerly Known As Moloch) can now be fed with a real-time stream of decrypted HTTPS traffic from PolarProxy. All that is needed to enable this feature is to include 'pcapReadMethod=pcap-over-ip-server' in Arkime's config.ini file and start PolarProxy with th[...]

The post Capturing Decrypted TLS Traffic with Arkime appeared first on Security Boulevard.

Erik Hjelmvik

Source: Security Boulevard
Source Link: https://securityboulevard.com/2020/12/capturing-decrypted-tls-traffic-with-arkime/