Network traffic encryption has become common place for the internet and adversaries. Adversaries are hiding within the SSL/TLS profile of networks. This talk will address some of the problems with current detection methods along with techniques on how to enhance SSL/TLS encrypted traffic telemetry, including the JA3 fingerprint