Lab 6: TLS/SSL Analysis
Back to Week 6
Objectives
1. Connect to Server with OpenSSL
✓
Use OpenSSL s_client to establish a TLS connection to a remote server and examine the handshake.
Show Hint
Use: openssl s_client -connect example.com:443
2. Examine Certificate Chain
✓
Review the certificate chain displayed in the output to understand the trust hierarchy.
Show Hint
Look for the "Certificate chain" section in the output. Use: openssl s_client -connect example.com:443 -showcerts
3. Check Cipher Suite
✓
Identify which cipher suite was negotiated between client and server.
Show Hint
Use: openssl s_client -connect example.com:443 -cipher 'HIGH'
4. Test TLS 1.2 Support
✓
Verify that the server supports TLS 1.2 protocol.
Show Hint
Use: openssl s_client -connect example.com:443 -tls1_2
5. Test for Weak Ciphers
✓
Attempt to connect using a weak cipher (RC4) to verify it's properly blocked.
Show Hint
Use: openssl s_client -connect example.com:443 -cipher 'RC4'
6. Extract Server Certificate
✓
Extract the server certificate from the TLS handshake to a file for further analysis.
Show Hint
Use: echo | openssl s_client -connect example.com:443 2>&1 | openssl x509 -outform PEM > server.pem
7. Verify Certificate Validity
✓
Check the extracted certificate's expiration date and validity period.
Show Hint
Use: openssl x509 -in server.pem -noout -dates
SOC Workstation - OpenSSL Client
OpenSSL TLS/SSL Analysis Environment
Use OpenSSL commands to analyze TLS connections
analyst@soc-workstation:~$
Lab Complete!
Outstanding! You've mastered TLS/SSL analysis techniques.
+25 XP