SSL Sniff 1

Forensics - 50 Points

We received a network capture file of an HTTPS request that was MITMd. Try to find the culprit.


The file is a normal PCAP file, I’ve opened it with Wireshark and searched for some useful information then I realized that the MITM could be done with a fake Certificate and here is the flag


Flag: Key-Is-dUs1mKl4