Wireshark mailing list archives

Re: Extracting SSL certificate from SSL handshake

From: Sake Blok <sake () euronet nl>
Date: Wed, 19 Oct 2011 09:12:18 +0200

Hi Robert,

On 19 okt 2011, at 08:49, Robert Kochem wrote:

On Wed, 19 Oct 2011 00:32:40 +0200 wrote Sake Blok:

To extract a certificate, select the packet that contains the
(reassembled) SSL Handshake message "Certificate". Expand the
Certificates until you have list of Length and Certificate lines. Right
click on the cetificate that you want to extract and choose for "Export
Selected Bytes". It will save the certificate in DER format to the file
you specify.


OK now I got it. But this only works in the main window. I had opened a 
separate window via double click on the packet marked as "Certificate, 
Server Hello Done" (also available as function "Show packet in new 
window") and in that window you have the same protocol entries including 
the certificate but no context menu for exporting it (Version 1.6.2 Win32).
Is this is a bug? If not it is a very confusing behavior...


It is not a bug, the context menu for the individual packet window has just not been implemented yet. As with all 
functionality in Wireshark:

a) someone needs to come up with the idea of some functionality

b) someone needs to take interest in writing the code and have time to do it

For the context menu in the single packet window, there is already an enhancement request on bugzilla (which is the 
place where people can express their ideas for new functionality if they are not able to write the code themselves). It 
has so far not been picked up by anyone to write the code.

I do agree with you that having the context menu on the single packet window would be nice to have.

Cheers,
Sake
___________________________________________________________________________
Sent via:    Wireshark-users mailing list <wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-request () wireshark org?subject=unsubscribe

Current thread:

Extracting SSL certificate from SSL handshake Robert Kochem (Oct 18)
- Re: Extracting SSL certificate from SSL handshake firstname lastname (Oct 18)
- Re: Extracting SSL certificate from SSL handshake Sake Blok (Oct 18)
  - Re: Extracting SSL certificate from SSL handshake Robert Kochem (Oct 18)
    - Re: Extracting SSL certificate from SSL handshake Sake Blok (Oct 19)