Zenler Player
Your course is loading. Hang tight.
Practical TLS
Back to curriculum
0% Complete
0% Complete
Welcome to Practical TLS
Join the Discord Server
Discord Server - Guided Instructions
What is SSL? What is TLS?
How do SSL/TLS Protect your Data?
Anti-Replay and Non-Repudiation
Key Players
TLS / SSL Versions - Part 1
TLS / SSL Versions - Part 2
Module 1 Review Questions
Hashing
Data-Integrity
Encryption
Public and Private Keys
How TLS and SSL use Cryptography
Public Key Infrastructure (PKI)
RSA
Diffie-Hellman
Digital Signature Algorithm
Module 2 Review Questions
Overview of the SSL Process
What is in a Certificate?
Inspecting a Certificate
Certificate Extensions
LAB 3.0 - Setting up your Lab Environment
LAB 3.1 - Inspecting the certificate of your favorite website
What is in a Private Key?
LAB 3.2 - Matching Certificates to Private Keys
What is in a CSR?
File Formats
LAB 3.3 - Creating a Certificate Authority and two Signed Certificates
LAB 3.4 - File Conversions
Module 3 Review Questions
Overview of the SSL Process, part 2
Certificate Validation - Part 1
Certificate Validation - Part 2
Certificate Chains - Part 1
Certificate Chains - Part 2
LAB 4.1 - Certificate Chains
Basic Constraints
Certificate Types (DV, OV, EV)
Certificate Revocation
Checking Revocation Status
LAB 4.2 - Certificate Revocation
Module 4 Review Questions
Cipher Suites
CS - Key Exchange - Part 1
CS - Forward Secrecy - Key Exchange - Part 2
CS - Authentication
CS - Encryption - Part 1
CS - Encryption - Part 2
CS - Hashing
Cipher Suites - Avoid, Accept, Prefer
Enumerating Cipher Suites
LAB 5.1 - Cipher Suite Enumeration
Records - Part 1
Records - Part 2
TLS Handshake
LAB 6.1 - Inspecting a TLS Handshake in Wireshark
Handshake: Ephemeral Diffie-Hellman
Handshake: Session Resumption
Handshake: Mutual Authentication
LAB 6.2 - Inspecting TLS Handshake Variants
TLS Extensions
Extension: OCSP Stapling
Extension: Server Name Indication (SNI)
Extension: Session Tickets
LAB 6.3 - Inspecting Handshake Extensions
Decrypting TLS
LAB 6.4 - Decrypting TLS
Major SSL/TLS Failures over the Years
HTTP Strict Transport Security
Certificate Authority Authorization
Certificate Transparency - Part 1 - Overview
Certificate Transparency - Part 2 - Process and Demonstration
Certificate Transparency - Part 3 - Merkle Hash Trees
Module Description
Insecure Renegotiation (Session Renegotiation)
Differences with TLS 1.3
Changes to Cipher Suites
Changes to Handshake
Changes to Renegotiation
Changes to Session Resumption
Middleboxes and Complications with migrating to TLS 1.3
Forward Secrecy and TLS 1.3
Decrypting TLS 1.3
LAB 9.1 - Capturing and Filtering TLS 1.3 Traffic
TLS 1.3 Key Schedule - Part 1
TLS 1.3 Handshake
LAB 10.1 - Inspecting & Decrypting a TLS 1.3 Handshake
TLS 1.3 Key Schedule - Part 2
TLS 1.3 Session Resumption
TLS 1.3 PSK Mode Handshake
TLS 1.3 Session Tickets
TLS 1.3 0-RTT Handshake
LAB 10.2 - Inspecting TLS 1.3 PSK Handshakes
TLS 1.3 Mutual Authentication
Extensions Overview
Review of TLS 1.3 Extensions already discussed
Extension: Signature Algorithm & Signature Algorithm Certificate
Extension: Cookies
Extension: ALPN - Application Layer Protocol Negotiation
Extension: PHA - Post Handshake Authentication
Free access to OpenSSL Training Course
Infographics -- free to share
Welcome =)
Welcome to Practical TLS
Join the Discord Server
Discord Server - Guided Instructions
Module 1 - TLS/SSL Overview
What is SSL? What is TLS?
Preview
How do SSL/TLS Protect your Data?
Preview
Anti-Replay and Non-Repudiation
Preview
Key Players
Preview
TLS / SSL Versions - Part 1
TLS / SSL Versions - Part 2
Module 1 Review Questions
Module 2 - Cryptography
Hashing
Preview
Data-Integrity
Preview
Encryption
Public and Private Keys
How TLS and SSL use Cryptography
Preview
Public Key Infrastructure (PKI)
RSA
Diffie-Hellman
Digital Signature Algorithm
Module 2 Review Questions
Module 3 - x509 Certificates and Keys
Overview of the SSL Process
Preview
What is in a Certificate?
Inspecting a Certificate
Certificate Extensions
LAB 3.0 - Setting up your Lab Environment
LAB 3.1 - Inspecting the certificate of your favorite website
What is in a Private Key?
LAB 3.2 - Matching Certificates to Private Keys
What is in a CSR?
File Formats
LAB 3.3 - Creating a Certificate Authority and two Signed Certificates
LAB 3.4 - File Conversions
Module 3 Review Questions
Module 4 - Security through Certificates
Overview of the SSL Process, part 2
Preview
Certificate Validation - Part 1
Certificate Validation - Part 2
Certificate Chains - Part 1
Certificate Chains - Part 2
LAB 4.1 - Certificate Chains
Basic Constraints
Certificate Types (DV, OV, EV)
Certificate Revocation
Checking Revocation Status
LAB 4.2 - Certificate Revocation
Module 4 Review Questions
Module 5 - Cipher Suites
Cipher Suites
Preview
CS - Key Exchange - Part 1
CS - Forward Secrecy - Key Exchange - Part 2
Preview
CS - Authentication
CS - Encryption - Part 1
CS - Encryption - Part 2
CS - Hashing
Cipher Suites - Avoid, Accept, Prefer
Enumerating Cipher Suites
LAB 5.1 - Cipher Suite Enumeration
Module 6 - TLS/SSL Handshake
Records - Part 1
Preview
Records - Part 2
Preview
TLS Handshake
LAB 6.1 - Inspecting a TLS Handshake in Wireshark
Handshake: Ephemeral Diffie-Hellman
Handshake: Session Resumption
Handshake: Mutual Authentication
LAB 6.2 - Inspecting TLS Handshake Variants
TLS Extensions
Extension: OCSP Stapling
Extension: Server Name Indication (SNI)
Extension: Session Tickets
LAB 6.3 - Inspecting Handshake Extensions
Decrypting TLS
LAB 6.4 - Decrypting TLS
Module 7 - TLS Defenses
Major SSL/TLS Failures over the Years
HTTP Strict Transport Security
Certificate Authority Authorization
Certificate Transparency - Part 1 - Overview
Certificate Transparency - Part 2 - Process and Demonstration
Certificate Transparency - Part 3 - Merkle Hash Trees
Module 8 - TLS Attacks & Vulnerabilities
Module Description
Insecure Renegotiation (Session Renegotiation)
Module 9 - What's new in TLS 1.3?
Differences with TLS 1.3
Changes to Cipher Suites
Changes to Handshake
Changes to Renegotiation
Changes to Session Resumption
Middleboxes and Complications with migrating to TLS 1.3
Forward Secrecy and TLS 1.3
Decrypting TLS 1.3
LAB 9.1 - Capturing and Filtering TLS 1.3 Traffic
Module 10 - TLS 1.3 Under the Hood
TLS 1.3 Key Schedule - Part 1
TLS 1.3 Handshake
LAB 10.1 - Inspecting & Decrypting a TLS 1.3 Handshake
TLS 1.3 Key Schedule - Part 2
TLS 1.3 Session Resumption
TLS 1.3 PSK Mode Handshake
TLS 1.3 Session Tickets
TLS 1.3 0-RTT Handshake
LAB 10.2 - Inspecting TLS 1.3 PSK Handshakes
TLS 1.3 Mutual Authentication
Module 11 - TLS 1.3 Extensions
Extensions Overview
Review of TLS 1.3 Extensions already discussed
Extension: Signature Algorithm & Signature Algorithm Certificate
Extension: Cookies
Extension: ALPN - Application Layer Protocol Negotiation
Extension: PHA - Post Handshake Authentication
Bonus Content
Free access to OpenSSL Training Course
Infographics -- free to share
×
This is an unpublished lesson. This lesson will not be shown for students unless you set it as Public.
Back to Dashboard
No contents are available in this lesson!
No lessons available !
Back to Dashboard
Lesson contents locked
Enroll to unlock this lesson.
Enroll to unlock
Next Lesson