This is an old revision of the document!
QUIC protocol analysis using the Trisul Scripting API
QUIC (Quick UDP Internet Connection) is a protocol championed by Google to speed up web services by replacing the traditional TCP/HTTP based layer with a new UDP based protocol. This is almost exclusively used by Google right now , but there is an IETF Working Group on it now. The movement is to merge HTTP semantics on the UDP based QUIC and call the new thing HTTP/3.
However, right now the only QUIC found in the wild seems to be from the Google stable and used by Google-Chrome. This is what we're dealing with in this article. To differentiate this from the “IETF QUIC” I suppose we can call the protocol G-QUIC like Wireshark does.
BITMAUL
Extract the following information
Flow Tags
Extract X.509 Certificate in QUIC