I have a whole bunch of encrypted QUIC UDP packets I've managed to capture and narrow down from an online game. I believe these are the incoming chat messages.

I'd like to decrypt these packets to see if I can read the raw data being sent. Is this possible? What information/settings do I need?

For decrypting QUIC packet in latest wireshark (not sure if works in older verison )

1. Go to Edit->Preferences->Protocols
2. select QUIC from drop down list
3. select " Force decode of all QUIC Payload"

In wireshark version 3.2.3 at Edit->Preferences->Protocols->QUIC, add the QUIC UDP port. The wireshark will now decode these UDP packets as QUIC packets. It will decode the non-encrypted plain header fields of QUIC, however the encrypted part of QUIC remains encrypted and is just displayed with label "remaining payload". These steps are for decoding a QUIC UDP packet header fields and not for there decryption.

1. In a terminal, type

   export SSLKEYLOGFILE="$HOME/sslkeylogfile.log"
   

   then restart chromium:

   chromium &
   

   Chromium will now save the encryption keys to this file.

2. In wireshark,

   Edit > Preferences > Protocols > TLS > (Pre)-Master-Secret log filename:

   $HOME/sslkeylogfile.log
   

   Wireshark will use the keys in this file to decrypt entire packets for TLS / QUIC / HTTP3.