Stunnel for Service IPC over TCP?

windows ssl tcp stunnel

If all services are running on the same server, the traffic between them will never appear on the network at all.

The server's networking stack will just move packets across processes without even involving the network adapter.

Network sniffers such as WireShark have quite some troubles capturing traffic between processes running on the same system, since that traffic doesn't actually reach the network:

https://stackoverflow.com/questions/5847168/wireshark-localhost-traffic-capture
Is there a way to get wireshark to capture packets sent from/to localhost on Windows?

I don't know if as of 2021 this is even possible at all, and if this changes depending on what destination IP address the connection uses (127.0.0.1 or the actual server's IP address).

Regardless, please note that running a network sniffer on the server would require administrative rights, which would anyway allow an intruder total control on the server and on all processes running on it.

If you have admin rights, you don't need to sniff network traffic; you can do everything, including reading a process' memory. Also, if you just want to stay at the networking level, you can get hold of any certificate the process is using to encrypt traffic and decrypt it.

Related

Capturing installed applications with MDT
Can I assign a browser to open links from specific apps?
Can Ubuntu touch run VS code?
Is it possible to check which programs use the battery the most?
How to get dovecot to reload an SSL certificate with minimal impact
Why is my wifi card not recognised on Ubuntu-20.04? [duplicate]
Apache prevent access to everything except a single location
Create selinux context for systemd script?
convert cer to csr using openssl or keytool
How to match PTR record with a different domain?
Azure Redis cache premium deployment failure
Running MQTT broker in Kubernetes (nginx-ingress-controller) with TCP over SSL