-
**Describe the feature:**
When it comes to configuring settings for Agent policies in the Fleet UI, there are four sections:
- Fleet Server Hosts
- Outputs
- Agent Binary Download
- Proxies
…
-
Hello,
I'm trying mirror the client's given cipher suites for the proxy to provide to the server.
There's two road blocks I'm getting stuck at.
1) obtaining the client's provided cipher suite…
-
**Description**
Currently to verify a linked host with TLS, fingerprints are used. This feature request would allow using a certificate authority to verify instead.
This could look something lik…
kylef updated
6 months ago
-
When the payload is only one, a number is returned. when there are multiple payloads a string is returned.
I think we should have a consistency to be able to safely parse those fields
See the foll…
-
Is there a mechanism to normalize client hellos? Chrome is randomizing order: https://hnull.org/2022/12/01/sorting-out-randomized-tls-fingerprints/
-
```
I fully understand that using anything other than standard TLS/SSL would make
it easier for the protocol to be fingerprinted and potentially blocked.
FOrtunately, another project with a complete…
-
### Description
I just updated my client from 1.3.4 to 1.4.287. I only read about the installer weirdness afterwards, so I uninstalled both from the Windows settings and then installed 1.4.287 again.…
-
I have a Wyse thin client running a web management console on https 443
Nothing in the modern age will talk to it as it's using a very old SSL/TLS self-signed cert from 2011.
I tried using ssl-…
-
i get this massage:
The MASK_HOST xxxxx.com is not TLS 1.3 host, this is not recommended
Active fingerprinting detected from 37.129.214.115, dropping it
-
Worth adding simulator for malicious TLS traffic, i.e. having known bad JA3 or certificate hashes.