How to set up a simple HTTPS server for pentesting [closed]
While learning about pentesting most of the time I have used the python3 -m http.server [PORT] command to spin up a temporary http server in order to transfer files to a target system. However as I am progressing and moving beyond the basic concepts into evasion and stealth I have learned that certain IDS/endpoint protection may scrutinize the contents of HTTP connections and the use of HTTPS is an alternative in this case.
Is there a simple way to set up a HTTPS server in a similar manner to the python example above? I'm guessing it's not that simple due to the certificates. I have heard using Apache mentioned but all the tutorials I have looked at in regard to Apache are about setting it up as a persistent web server (you know, the thing it was meant to be used for).
Ultimately the security aspects of HTTPS are not that important (like for a real web server) as the server only stays up for at most a few minutes at the time. It is more about the simplest way of getting the TLS to avoid getting the traffic snooped on by endpoint protection.
