![[podcast] Application Profiling with FingerprinTLS!](https://images.ctfassets.net/kvf8rpi09wgk/3tpSXLMbs6D0bXlTw8UucK/2d648c6dd1981c3fca93f5c03ea36bc7/blog-default.jpg?w=500&q=55&fm=webp)
Ready to Start Your Career?
By: BrBr
February 17, 2016
[podcast] Application Profiling with FingerprinTLS!
By: BrBr
February 17, 2016
We first heard about FingerprinTLS from our friend Lee Brotherston at DerbyCon last September. Very intrigued by how he was able to fingerprint client applications being used, we finally were able to get him on to discuss this.We do a bit of history about#TLS, and the versions from 1.0 to 1.2Lee gives us some examples on how FingerprintTLS might be used by red teamers or pentest agents to see what applications a client has on their system, or if you're a blue team that has specific application limitations, you can find out if someone has installed an unauthorized product, or you could even block unknown applications using this method by sensing the application and then creating an IPS rule from the fingerprint.Finally, something a bit special... we have a demo on our Youtube site that you can view his application in action!Video demo: https://youtu.be/im6un0cB3Ns https://upload.wikimedia.org/wikipedia/commons/thumb/4/46/Diffie-Hellman_Key_Exchange.svg/2000px-Diffie-Hellman_Key_Exchange.svg.pnghttp://blog.squarelemon.com/tls-fingerprinting/https://github.com/LeeBrotherston/tls-fingerprintinghttp://www.slideshare.net/LeeBrotherston/tls-fingerprinting-sectorca-editionhttps://www.youtube.com/watch?v=XX0FRAy2Mechttp://2015.video.sector.ca/video/144175700Cisco blog on malware using TLS... http://blogs.cisco.com/security/malwares-use-of-tls-and-encryption Stitcher Network: http://www.stitcher.com/s?fid=80546&refid=stprTuneIn Radio App: http://tunein.com/radio/Brakeing-Down-Security-Podcast-p801582/BrakeSec Podcast Twitter: http://www.twitter.com/brakesecBryan's Twitter: http://www.twitter.com/bryanbrakeBrian's Twitter: http://www.twitter.com/boettcherpwnedJoin our Patreon!: https://www.patreon.com/bds_podcastTumblr: http://brakeingdownsecurity.tumblr.com/RSS FEED: http://www.brakeingsecurity.com/rssComments, Questions, Feedback: bds.podcast@gmail.com**NEW** Google Play Store: https://play.google.com/music/podcasts/portal/#p:id=playpodcast/series&a=100584969**NEW** Listen to us on Player.FM!! : https://player.fm/series/brakeing-down-security-podcastiTunes: https://itunes.apple.com/us/podcast/2016-007-fingerprintls-profiling/id799131292?i=362885277&mt=2Direct Download: http://traffic.libsyn.com/brakeingsecurity/2016-007-FingerprinTLS_with_Lee_Brotherston.mp3[embed]http://traffic.libsyn.com/brakeingsecurity/2016-007-FingerprinTLS_with_Lee_Brotherston.mp3[/embed]
