Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
TLS & HTTPS Visualized, and HTTPS localhost setup in 2026
Highest Rated
Rating: 4.6 out of 5(305 ratings)
2,012 students

TLS & HTTPS Visualized, and HTTPS localhost setup in 2026

Advanced TLS and HTTPS course for everyone in 2026! Set up a HTTPS localhost server with Node and Live Server. Tons MORE
Created byClyde Matthew
Last updated 1/2026
English

What you'll learn

  • Create your own localhost server (Node and Live Server) that runs over HTTPS / TLS
  • Join the ranks of elite developers who truly understand how TLS protects data in transit
  • Understand HTTPS by creating your own Certificate Authority and signing certificates
  • Gain a deep understanding of pure HTTPS and TLS
  • Understand hybrid key exchange concepts that are used TODAY with TLS 1.3
  • Learn encryption, hashing, HMACs and PIKs with respect to HTTPS
  • Master the concepts of HTTPS and TLS
  • Learn more than 99% of developers who think HTTPS is just "secure"!
  • Understand how TLS works, visually
  • Generate your own self-signed PIK certificates and sign for your server FOR FREE
  • Understand concepts of asymmetric and symmetric encryption
  • Understand the role of "public" and "private" keys in HTTPS
  • Become a developer grandmaster
  • Dive deep into the mechanics of TLS handshakes and understand how secure connections are forged!
  • Hands-on experience in setting up HTTPS on locahost using Live Server (VSC) using Node
  • Equip yourself with the skills to implement robust security measures in your web applications!
  • Become a trusted developer by mastering the principles of encryption, authentication, and data integrity!
  • Visualize TLS, PKI, HTTPS and more!
  • Understand how to use OpenSSL and .cnf files to supply configurations to your certificates and keys
  • How to extract the public key from a private key
  • Understand why the private key often looks like the public key
  • Understand PEM files, ASN.1 files and PCKS#1 files
  • Learn the latest hybrid key exchange techniques used by latest browsers in TLS 1.3
  • Understand the TLS 1.3 handshake process

Course content

3 sections54 lectures4h 28m total length
  • Introduction to HTTP3:38

    HTTP (Hypertext Transfer Protocol) is the foundational protocol for data exchange on the web, enabling communication between clients and servers. However, it is inherently insecure as it transmits data in plaintext without encryption, making it vulnerable to eavesdropping and man-in-the-middle attacks. This lack of encryption means sensitive information can be intercepted easily during transmission, highlighting the need for secure alternatives like HTTPS, which incorporates TLS for encryption.

  • Wireshark0:27

    I will be using wireshark.

  • Analyze HTTP/1.1 traffic using Wireshark6:37

    In this lecture I'll show you how to use Wireshark to analyze HTTP/1.1 traffic to inspect data packets transmitted over our locahost network.

    HTTP traffic is unencrypted, making it easy to observe details such as GET and POST requests and server responses. This analysis will highlight the vulnerabilities associated with transmitting sensitive information without encryption.

  • How to capture encrypted HTTPS traffic over HTTP/34:11

    It's time to start our way down the rabbit hole.

    In this lecture lets examine HTTPS traffic over HTTP/3 for www.google.com using Wireshark.

    Since HTTP/3 utilizes QUIC, which integrates transport and security layers, the traffic is encrypted by default. This highlights the enhanced security of HTTPS compared to unencrypted HTTP, protecting user data during transmission.

  • What is encryption3:12

    In this video, we explore the fundamental concepts of encryption, including its purpose in securing data and communications.

    I'll introduce you to the concept of "keys", which is what HTTPS uses today.

  • Symmetric key encryption4:42

    Symmetric key algorithms use the same key for both encrypting and decrypting data sent over HTTPS.

    This method ensures that both the client and server can securely exchange information quickly and efficiently.

    By employing symmetric encryption AFTER an initial handshake, where keys are exchanged using asymmetric methods, HTTPS maintains a secure connection, protecting sensitive data during transmission.

  • Asymmetric key encryption5:08

    I want you to understand how asymmetric encryption uses a pair of keys—a public key for encrypting data and a private key for decrypting it.

    This method is crucial in HTTPS for securely exchanging session keys.

    Initially, the client uses the server's public key to encrypt a session key, which the server then decrypts with its private key, establishing a secure connection for further symmetric encryption of data.

  • Analyzing QUIC and HTTP/3 traffic in Wireshark, and extracting session keys14:56

    I'll show you how to analyze TLS 1.3 traffic in Wireshark and how to capture the session keys exchanged by the client and server in order to decrypt the HTTP/3 traffic.

  • What encryption algorithms does OpenSSL provide?3:20

    OpenSSL provides a wide range of encryption algorithms that can be categorized into symmetric and asymmetric encryption, as well as various hashing algorithms.

  • HTTP, HTTPS and Encryption

Requirements

  • No programming experience necessary, although a basic understanding of HTTP will be helpful
  • Mac or PC, so you can code alongside with me

Description

*** BEST TOP RATED COURSE ON TLS AND HTTPS FOR 2026***

  • Deep dive into TLS (previously called SSL) and HTTPS: Gain insights that set you apart from 99% of developers. Understand the true meaning of HTTPS beyond the surface-level claims of "security"

  • The end of HTTP/1.1: Any serious developer today must concentrate on TLS security and hosting websites over the more robust protocols like HTTP/2 and HTTP/3. Stay relevant in a rapidly evolving digital landscape

  • Key Concepts Unlocked: Explore advanced topics such as hybrid key exchange, encryption, public key infrastructure (PIK), asymmetric and symmetric cryptography, TLS handshake, HMAC, signatures, hashing, and cipher suites. Each concept builds a solid foundation for your web security knowledge.

This course is meticulously crafted for developers who are eager to elevate their TLS skills and gain a profound understanding of HTTPS, Certificate Authorities, and secure server configurations.

SSL is old-school, outdated and deprecated. Therefore this course focuses on TLS as the protocol used with HTTP/2 and HTTP/3.

What You’ll Learn:

Throughout this course, you will embark on an adventure that seamlessly blends theory with hands-on practice. Here’s what you can expect:

  • Practical HTTPS setup: You are going to learn how to use Node.js, and Live Server to set up a localhost server over a secure TLS / HTTPS connection. You will master the process of creating certificates and generating keys.

  • Encryption: Understand the principles of encryption, including both symmetric and asymmetric methods, the concept of "keys" and how they are applied in secure HTTPS communications.

  • TLS Handshake Mechanics: Dive deep into the TLS handshake process, learning how secure connections are established between clients and servers.

  • Public Key Infrastructure: Learn about the framework that enables secure data exchange through digital certificates and key management.

  • Advanced TLS Concepts and Cryptography: Gain insights into Hybrid Key Exchange (KEM algos), HMAC, signatures, hashing techniques, and cipher suites that form the backbone of secure TLS web interactions.


This HTTPS Course Is Practical: 

You’ll put theory into action by setting up your own secure local server using HTTPS through the following steps:

  1. Create Your Own Certificate Authority (CA): Learn how to set up a CA from scratch, giving you the authority to issue certificates for your projects.

  2. Self-Sign Your CA Certificate: Discover how to self-sign your CA certificate, making it uniquely yours and ready for deployment.

  3. Generate Keys for Security: Master the process of generating private and public keys for your server.

  4. Request a Signed Certificate: Complete the setup by learning how to request a signed certificate, finalizing your secure server configuration.

  5. Sign Your Server’s Certificate: Use your newly created CA to sign your server’s certificate, ensuring secure communication for your local applications.


Hands-On Experience:

In this course you will spin up a localhost server (running on 127.0.0.1) over HTTPS using:

  • Live Server in Visual Studio Code (we do this using a GUI and also OpenSSL)

  • A Node server instance, using the mkcert library (I'll show you how to do this using the API and also the CLI)

Additionally, you'll analyze traffic for both HTTP/2 and HTTP/3, gaining insights into modern web communication protocols. This course is not just about learning; it’s about doing!


Don’t Miss Out on Essential Skills!

In today's fast-paced tech landscape, mastering TLS and web security is no longer optional—it's essential. Every serious developer must be equipped with these skills to thrive in a competitive environment.

The time to act is now!

Equip yourself with the knowledge that will set you apart and position you as a leader in web development.

This is your chance to step confidently into the future of web security with our comprehensive course on Transport Layer Security (TLS).

So ... what are you waiting for? 

Let's get crackin'

Who this course is for:

  • Aspiring web developers looking to host their own HTTPS server with self-signed certificates
  • Developers who want to demystify TLS and HTTPS and understand its real-world applications
  • Professionals who want to learn more than 99% of developers who think HTTPS is just "secure" without understanding why!
  • Curious minds ready to explore HTTP/2 and HTTP/3
  • Anyone interested in becoming a confident advocate for web security in their organization!
  • Developers eager to master Public Key Infrastructure (PKI) and secure their applications with encryption!