Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 31 subscribers
  • Views 1202 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Anyone have a good list that's been developed for TLS Exclusion?

DBASQL

I think there will be many more domains that need to be added to the TLS bypass. If you have already been through this pain please share!

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    Hi  ,

    TLS Exclusions highly depends on your own scenario and workplace; I don't recommend using randoms lists from other users for it, to be honest here I deeply recommend for you to build your own exclusion list.

    If your workplace heavily uses browser based applications and you imported the CA correctly, then you will _almost_ never have issues with decryption. But depending on the application your users use - if it has certificate pinning then yes, you will have to create a exclusion for the necessary domain.

    Thanks!

  • 0 in reply to Prism

    And that defeats the purpose of wanting to scan sites that you and your clients visit.

Reply Children
No Data