SSL Pinning

Frida

Objection

android sslpinning disable

Flutter

ProxyDroid + Frida

  • Burp Suite -> Proxy -> Proxy settings -> Proxy listeners -> Edit

    • Bind to port: 8080

    • Bind to address: All interfaces

    • Request handling -> Support invisible proxying

Activar opción "Support invisible proxying"
frida -U -f <app-package-name> -l disable-flutter-tls.js
frida -H <device-IP-address> -f <app-package-name> -l disable-flutter-tls.js

reFlutter

  • Burp Suite -> Proxy -> Proxy settings -> Proxy listeners -> Edit

    • Bind to port: 8083

    • Bind to address: Specific address

    • Request handling -> Support invisible proxying

Activar opción "Support invisible proxying"
reflutter application.apk
java -jar uber-apk-signer.jar --allowResign -a release.RE.apk
adb install release.RE-aligned-debugSigned.apk

Última actualización

¿Te fue útil?