πŸ”
AppSec & Pentest
Mobile
PentestAppSecMobileCloudSec
Mobile
PentestAppSecMobileCloudSec
  • Mobile
  • Pentesting Methodology
  • Programming
    • Аналитика
      • Some Papers
      • ΠŸΡ€ΠΈΠΌΠ΅Ρ€Ρ‹ Ρ‚ΠΎΠΊΠ΅Π½ΠΎΠ²/ΠΊΠ»ΡŽΡ‡Π΅ΠΉ ΠΈ Ρ‚ΠΏ
      • Twitter ads
      • Branch.IO
      • Adjust
      • Amplitude Analytics
      • Paypal for Business
      • Emarsys
      • MobileAppTracker
      • AppsFlyer
        • About
        • Настройка Π°ΠΊΠΊΠ°ΡƒΠ½Ρ‚Π°
        • ИсслСдованиС ΠΊΠΎΠ΄Π°
        • Examples
      • Fabric
      • Mixpanel Analytics
      • Facebook ads
      • Yandex
      • Firebase SDK
        • Intro
        • ΠŸΡ€ΠΈΠΌΠ΅Ρ€Ρ‹
        • Firebase Cloud Messaging
        • ΠšΠΎΠΌΠΏΠΎΠ½Π΅Π½Ρ‚Ρ‹
          • Firebase
          • FirebaseABTesting
          • FirebaseAnalytics[Interop]
          • FirebaseAppDistribution
          • FirebaseAuth[Interop]
          • FirebaseCore
          • FirebaseCoreDiagnostics[Interop]
          • FirebaseCrashlytics
          • FirebaseDatabase
          • FirebaseDynamicLinks
          • FirebaseFirestore[Swift]
          • FirebaseFunctions
          • FirebaseInAppMessaging
          • FirebaseInstallations
          • FirebaseInstanceID
          • FirebaseMessaging
          • FirebaseRemoteConfig
          • FirebaseStorage[Swift]
          • GoogleDataTransport
          • GoogleDataTransportCCTSupport
          • GoogleUtilities
          • GoogleUtilitiesComponents
      • Crashlytics
      • GTM: Google Tag Manager
      • Google Maps
      • Google Analytics
      • Flurry
      • HockeyApp
    • iOS
      • ΠœΠ°Ρ‚Π΅Ρ€ΠΈΠ°Π»Ρ‹
      • iOS: SSL Pinning
      • ЯП
        • Swift
          • VIPER (Architecture)
          • ΠžΠ±Ρ‰Π΅Π΅
          • UI
          • ΠŸΡ€ΠΎΠΈΠ·Π²ΠΎΠ΄ΠΈΡ‚Π΅Π»ΡŒΠ½ΠΎΡΡ‚ΡŒ
          • Swift Style Guide
        • Swift Security
          • ΠŸΡ€ΠΈΠΌΠ΅Ρ€Ρ‹ уязвимостСй
      • Frameworks and Libraries
        • [Pentest] App extensions
          • About
          • Extension types
          • Static Analys
          • Dynamic Analys
        • [Pentest] App Notifications
        • Async
        • Π‘DP
        • Core
        • Cryptography
        • Jailbreak Detection
        • Network
          • AFNetworking
          • Alamofire
          • HTTP Requests
        • Other
        • Push
        • RxSwift
        • Store Data
        • UI
          • SwiftUI
          • WebView in iOS App
          • UI
        • VPN Detection
      • XCode
        • Build Project
        • Build Project via Command Line
        • Install IPA
        • Templates
      • Π”Ρ€ΡƒΠ³ΠΈΠ΅ инструмСнты
        • mint
      • БистСмы зависимостСй ΠΏΠ°ΠΊΠ΅Ρ‚ΠΎΠ²
        • Carthage
        • CocoaPods
      • Troubleshooting
    • Android
      • АрхитСктура Android прилоТСния
        • АрхитСктура Kotlin-прилоТСния
        • Π Π°Π·Π½ΠΈΡ†Π° ΠΌΠ΅ΠΆΠ΄Ρƒ Android Library, Android APP ΠΈ Java Library
        • Basic
          • Activities
          • Broadcast Receivers
          • Content Providers
          • Custom URL Schemes
          • Intents
          • Notifications
          • PendingIntents
          • Permissions
          • Services
          • Android WebView
      • ЯП
        • Java
          • Bundle
        • Kotlin
          • Π’ΠΎΠ·Π²Ρ€Π°Ρ‰Π΅Π½ΠΈΠ΅ ΠΎΠ±ΡŠΠ΅ΠΊΡ‚ΠΎΠ² Π² Intent
          • Call Native Functions
      • Frameworks
        • AndroidX
        • LiveData
        • Lifecycle
        • Background Tasks
          • DownloadManager
          • AlarmManager
          • Foreground Services (ΠΈΠ»ΠΈ просто Services)
          • WorkManager
        • Room
        • Data binding
          • Basic
        • NDK
          • Install and Build
          • OpenSSL
          • libgit2 build
        • Navigation
        • Π Π°Π±ΠΎΡ‚Π° с изобраТСниями
          • Glide
        • Video/Audio
          • Communications
            • Jitsi
        • JS Engines
          • FB: Hermes
          • Duktape
        • DI: Dependency Injection
          • Π—Π°Ρ‡Π΅ΠΌ?
          • koin
          • kodein
          • dagger2
        • Retrofit / OkHTTP
          • Intro
          • Example Usage
            • Parse error body
            • ΠŸΡ€ΠΈΠΌΠ΅Ρ€Ρ‹ ΠΎΠ±Ρ€Π°Π±ΠΎΡ‚Ρ‡ΠΈΠΊΠΎΠ² запросов
            • Π‘Ρ‚Ρ€ΡƒΠΊΡ‚ΡƒΡ€Π° модуля
            • HttpApi
            • ControllerApi
          • SSLPinning
        • Google Play Authorization
      • Automating build (android in docker)
      • Android Studio
        • Build Project
        • БоставныС части ΠΏΡ€ΠΎΠ΅ΠΊΡ‚Π°
      • Π’Π΅Ρ…Π½ΠΎΠ»ΠΎΠ³ΠΈΠΈ
        • LeakCanary
        • Mocking
        • Настройка Ρ€Π΅Π·Π΅Ρ€Π²Π½ΠΎΠ³ΠΎ копирования
        • Remote Method Invocation
        • bundletool (aab -> apk)
      • ΠŸΡ€ΠΈΠΌΠ΅Ρ€Ρ‹ ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΉ
        • Kotlin
      • API levels & NDK Version
    • PWA
    • Hybrid App
      • Frameworks
        • Frameworks List
        • Electron
        • React Native
      • Google Web Toolkit
      • Dart/Flutter
      • Kotlin
      • Game Develope
    • Π Π΅ΠΊΠΎΠΌΠ΅Π½Π΄Π°Ρ†ΠΈΠΈ
      • Π₯Ρ€Π°Π½Π΅Π½ΠΈΠ΅ PIN-ΠΊΠΎΠ΄Π° ΠΈ ΡˆΠΈΡ„Ρ€ΠΎΠ²Π°Π½ΠΈΠ΅ ΠΈΠ½Ρ„ΠΎΡ€ΠΌΠ°Ρ†ΠΈΠΈ
      • Π Π°Π·Ρ€Π°Π±ΠΎΡ‚ΠΊΠ° прилоТСния для людСй с ΠΎΠ³Ρ€Π°Π½ΠΈΡ‡Π΅Π½Π½Ρ‹ΠΌΠΈ возмоТностями
      • Secure Networking on iOS
    • AirWatch MDM
    • Π”ΠΈΡΡ‚Ρ€ΠΈΠ±ΡŒΡŽΡ†ΠΈΡ
      • AppCenter
      • App Store
      • App Store Connect
      • AppTester
      • Crashlytics
      • Cydia
      • Diawi
      • Google Play
      • Hockey App
      • TestFairy
      • TestFlight
      • Transporter.app
      • Firebase AppDistribution
  • Forensic
    • Bluetooth
    • NFC
    • GSM
    • SIM-cards
    • iOS
      • Π˜Π½ΡΡ‚Ρ€ΡƒΠΌΠ΅Π½Ρ‚Ρ‹ ΠΈ скрипты
        • Π—Π°Π±ΠΎΡ€ ΡΠΊΡ€ΠΈΠ½ΡˆΠΎΡ‚ΠΎΠ² с Ρ‚Π΅Π»Π΅Ρ„ΠΎΠ½Π°
        • otool
        • lipo
        • plist reader
        • backup reader
        • libimobiledevice
        • Cydia Impactor
        • App Signature
      • АрхитСктура ОБ
        • Π¨ΠΈΡ„Ρ€ΠΎΠ²Π°Π½ΠΈΠ΅ ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΉ
        • АрхитСктура iOS прилоТСния
        • iBoot
        • Secure Enclave (SEP)
        • Π‘Ρ€Π°ΡƒΠ·Π΅Ρ€Ρ‹
      • Ѐайловая систСма
        • Π“Π΄Π΅ Ρ‡Ρ‚ΠΎ хранится
        • ΠœΠΎΠ½ΠΈΡ‚ΠΎΡ€ΠΈΠ½Π³ Ρ„Π°ΠΉΠ»ΠΎΠ²ΠΎΠΉ систСмы
      • Create/Decrypt Backup
      • IPA dump
        • Frida IPA dump
        • iOS 11 ΠΈ Π²Ρ‹ΡˆΠ΅
        • МладшС iOS 10
      • Jailbreak
      • DFU Ρ€Π΅ΠΆΠΈΠΌ (Ρ€Π΅ΠΆΠΈΠΌ восстановлСния ΠΈ обновлСния)
    • Android
      • Ѐайловая систСма
        • Android KeyStore
      • ΠžΠ±Ρ‰Π°Ρ информация ΠΎ систСмС: ΠŸΠΎΠ»Π΅Π·Π½Ρ‹Π΅ Ρ‚ΡƒΠ»Π·Ρ‹ ΠΈ ΠΊΠΎΠΌΠ°Π½Π΄Ρ‹
      • ΠŸΡ€ΠΎΠ²Π΅Ρ€ΠΈΡ‚ΡŒ подписи apk
      • Π‘ΠΎΠ·Π΄Π°Π½ΠΈΠ΅ ΠΈ восстановлСниС Ρ€Π΅Π·Π΅Ρ€Π²Π½ΠΎΠΉ ΠΊΠΎΠΏΠΈΠΈ
      • ΠŸΠ°ΠΌΡΡ‚ΡŒ процСссов
      • Root
        • Common
        • A/B-Ρ€Π°Π·Π΄Π΅Π»Ρ‹
        • Su
        • TWRP
  • Pentest
    • Уязвимости ΠΈ Атаки
      • Изи Π±Π°Π³ΠΈ
      • Common
      • iOS
      • Android
      • AppLinks
      • Auth
        • Biometrics bypass
        • PIN Bruteforce
        • Π’ΠΈΠΏΠΈΡ‡Π½Ρ‹Π΅ ошибки Ρ€Π΅Π°Π»ΠΈΠ·Π°Ρ†ΠΈΠΈ SMS-Π°ΡƒΡ‚Π΅Π½Ρ‚ΠΈΡ„ΠΈΠΊΠ°Ρ†ΠΈΠΈ
      • USSD Attack
      • Java Object Deserialization
      • Lack of binary protection (anti-debugging) controls
      • Disabled security features in binary libraries
      • Lack of exploit mitigations (e.g. PIE, ARC, or stack canaries)
      • Path disclosure in the binary
      • Runtime hacking exploits (e.g. exploits that are only possible in a jailbroken environment)
      • Snapshot/pasteboard leakage
      • User data stored unencrypted in the file system and/or external storage
      • Android Task Hijacking
      • WebView
        • Check list
        • Example Web View XSS in iOS app
        • CVE-2020-6506: uXSS in Android WebView
    • ΠšΠ΅ΠΉΡΡ‹
      • ΠžΠ±Ρ‰ΠΈΠ΅
        • Firebase
        • ΠŸΡ€ΠΎ сниффинг Ρ‚Ρ€Π°Ρ„ΠΈΠΊΠ° HTTP2/gRPC
        • Dump memory
      • Android
        • Simple Library RCE for Android
        • Π—Π°ΠΊΠΈΠ½ΡƒΡ‚ΡŒ GApps Π½Π° эмулятор
        • Android Dependency Check
        • Π—Π°ΠΏΡ€Π΅Ρ‚ ΡΠΊΡ€ΠΈΠ½ΡˆΠΎΡ‚Π° ΠΈ Π΄Π΅Ρ‚Π΅ΠΊΡ‚ овСрлСя
        • Disable/Delete any app w/o root
      • iOS
        • App Transport Security
        • Info.plist
        • Π‘ΠΌΠΎΡ‚Ρ€Π΅Ρ‚ΡŒ Π»ΠΎΠ³ΠΈ
        • Установка IPA-ΠΎΠ±Ρ€Π°Π·Π° Π½Π° iOS Π±Π΅Π· XCode, Cydia Impactor
        • Π‘ΠΎΡ€ΡŒΠ±Π° со ΡΠΊΡ€ΠΈΠ½ΡˆΠΎΡ‚Π°ΠΌΠΈ
        • Π‘Π»ΡŽΡ€ΠΈΠ½Π³ ΠΈΠ·ΠΎΠ±Ρ€Π°ΠΆΠ΅Π½ΠΈΠΉ Π² ΠΌΠ΅Π½Π΅Π΄ΠΆΠ΅Ρ€Π΅ ΠΎΠΊΠΎΠ½
        • Установка нСподписанных IPA
      • Hybrid Apps
        • Flutter SDK: RE/Capture Traffic
    • Bug Bounty
    • Настройка окруТСния
      • SASTs
      • Frida & Objection
      • Pentest WebView
      • iOS
        • Platform
        • Network
          • Π—Π°ΠΏΠΈΡΡŒ Ρ‚Ρ€Π°Ρ„Ρ„ΠΈΠΊΠ° iOS
          • iOS SSL Unpinning
      • Android
        • Reverse Engineering
        • Platform
        • Network
          • Π—Π°ΠΏΠΈΡΡŒ Ρ‚Ρ€Π°Ρ„ΠΈΠΊΠ° Android
          • Android: SSL Unpinning
    • Mitigations
    • Books & Papers
    • Companies & People & Blogs
    • Π˜Π½ΡΡ‚Ρ€ΡƒΠΌΠ΅Π½Ρ‚Ρ‹ ΠΈ скрипты
      • ΠšΠΎΠΌΠ±Π°ΠΉΠ½Ρ‹
      • Android
        • grep: Π˜Π·Π²Π»Π΅Ρ‡Π΅Π½ΠΈΠ΅ ΠΈΠ½Ρ„ΠΎΡ€ΠΌΠ°Ρ†ΠΈΠΈ ΠΈΠ· APK
        • Π‘ΠΎΠ»Π΅Π΅ ΠΌΠ΅Π½Π΅Π΅
        • Бтарая хСрня
          • Drozer
          • Π Π°Π·Π½ΠΎΠ΅
      • iOS
        • SAST
          • ipanema
          • iblessing
        • meetle
        • Static Analys with Frida
        • iFunBox
        • iOS Binary Analysis
        • needle
        • idb
        • ios emulator
        • passionfruit
        • Grapefruit ("NG passionfruit")
        • XPC Sniffing
        • SAST in MobSF
        • Поиск ΠΏΠΎ Ρ„Π°ΠΉΠ»Π°ΠΌ
      • hybrid app
        • Cordova
        • Xamarin
        • Electron
      • FBFlipper
      • truegaze
  • Reverse Engineering
    • Android
      • Tools
        • Decompilers
        • TODO: Androguard
        • TODO: AndroPyTool
        • TODO: LIEF-project
        • TODO: MobSF
        • JADX
        • dex2jar
        • Diff APKs, JARs,..
        • APKiD
        • enjarify
        • adb/fastboot
          • Install
          • Usage
          • Troubleshooting
          • На Ρ‡Ρ‚ΠΎ ΠΌΠΎΠΆΠ΅ΠΌ Π²Π»ΠΈΡΡ‚ΡŒ Ρ‡Π΅Ρ€Π΅Π· adb (Π² поисках сСрвисов)
        • DexCalibur
      • ΠžΠ±ΡŠΠ΅Π΄ΠΈΠ½ΠΈΡ‚ΡŒ нСсколько JAR
      • Build AOSP in Docker
      • ΠŸΠ°Ρ‚Ρ‡ΠΈΠ½Π³
      • Поиск ΡƒΠ½ΠΈΠΊΠ°Π»ΡŒΠ½Ρ‹Ρ… строк Π² Smali
      • Π—Π°Ρ‰ΠΈΡ‚Π° ΠΎΡ‚ frida
    • iOS
      • CVEs
      • Tools
        • iRET
        • xcrun
        • otool: check binary encryption
      • ΠŸΠ°Ρ‚Ρ‡ΠΈΠ½Π³
      • Start iOS Debug Server
      • iOS Audio Framework
      • Facebook SDK
      • Swift
      • Attack Secure Boot of SEP
      • iOS Kernel Firmware
    • Tools
      • frida
        • Установка
        • Frida CLI
        • Запуск скриптов
        • ΠžΠ±Ρ‰ΠΈΠ΅ ΠΊΠΎΠΌΠ°Π½Π΄Ρ‹ (JS API)
        • Frida Projects
        • ΠŸΡ€ΠΈΠΌΠ΅Ρ€Ρ‹
          • ΠœΠ°Ρ‚Π΅Ρ€ΠΈΠ°Π»Ρ‹
          • Android
          • iOS
          • Unity/Mono
          • ΠžΠ±Ρ‰Π΅Π΅
            • Π’Ρ‹Π²ΠΎΠ΄ Callstack
            • ΠŸΠ΅Ρ€Π΅Ρ…Π²Π°Ρ‚ инструкции ΠΏΠΎ ΡΠΌΠ΅Ρ‰Π΅Π½ΠΈΡŽ
            • ΠŸΠ΅Ρ€Π΅Ρ…Π²Π°Ρ‚ Ρ„ΡƒΠ½ΠΊΡ†ΠΈΠΈ ΠΏΠΎ ΠΈΠΌΠ΅Π½ΠΈ
            • ΠŸΠ΅Ρ€Π΅Ρ…Π²Π°Ρ‚ Ρ„ΡƒΠ½ΠΊΡ†ΠΈΠΈ ΠΏΠΎ ΡΠΌΠ΅Ρ‰Π΅Π½ΠΈΡŽ (sub_*)
      • objection
      • luject
      • emulators
    • ΠšΠ΅ΠΉΡΡ‹
      • Hybrid App
        • Intro
        • Hermes
        • Xamarin
        • React Native
        • Unity
        • Debug Hybrid App
    • Π‘Ρ‚Π°Ρ‚ΡŒΠΈ
  • Administration
    • Π˜Π½ΡΡ‚Ρ€ΡƒΠΌΠ΅Π½Ρ‚Ρ‹
      • Android
        • uiautomatorviewer
        • jobb
        • archquery
        • apkanalyzer
        • avdmanager
        • emulator
        • perfetto
        • monkeyrunner
        • Настройка окруТСния
        • sdkmanager
Powered by GitBook
On this page

Was this helpful?

Last updated 4 years ago

Бсылки

SSLPinning (дСлаСтся Ρ‡Π΅Ρ€Π΅Π· OkHTTP: сначала провСряСм сСрт Ρ‡Π΅Ρ€Π΅Π· okhttp, ΠΏΠΎΡ‚ΠΎΠΌ Π΄Π΅Π»Π°Π΅ΠΌ запрос Ρ‡Π΅Ρ€Π΅Π· Ρ€Π΅Ρ‚Ρ€ΠΎΡ„ΠΈΡ‚)

OkHTTP Client SSL Pinning ex:

SSL Pinning: CA - Π΄ΠΎΠ²Π΅Ρ€Π΅Π½Π½Ρ‹ΠΉ

Π‘ Π΄ΠΎΠ±Π°Π²Π»Π΅Π½ΠΈΠ΅ΠΌ SSL Pinning'Π° Π΅ΡΡ‚ΡŒ Π½ΡŽΠ°Π½ΡΡ‹. Если сСртификат сСрвСра подписан Ρƒ Π΄ΠΎΠ²Π΅Ρ€Π΅Π½Π½ΠΎΠ³ΠΎ CA, Ρ‚ΠΎ ΠΏΠΈΠ½Π½ΠΈΠ½Π³ Π² ΠΏΡ€ΠΈΠ»ΠΎΠΆΠ΅Π½ΠΈΠΈ дСлаСтся ΠΎΡ‡Π΅Π½ΡŒ просто:

SSL Pinning: CA - self-signed

Однако, Π² случаС самоподписанного сСртификата сСрвСра, TLS соСдинСниС Π½Π΅ Π±ΡƒΠ΄Π΅Ρ‚ установлСно: Π±ΡƒΠ΄Π΅Ρ‚ ошибка "trust anchor for certification path not found"

Π’ этом случаС Π½Π°Π΄ΠΎ Π΄ΠΎΠ±Π°Π²Π»ΡΡ‚ΡŒ свой TrustManager ΠΈ Π½Π°ΡΡ‚Ρ€Π°ΠΈΠ²Π°Ρ‚ΡŒ sslSocketFactory с сСртом сСрвСра.

ΠŸΡ€ΠΈΠΌΠ΅Ρ€ TrustManager с ΠΏΠΎΠ»Π½Ρ‹ΠΌ Π΄ΠΎΠ²Π΅Ρ€ΠΈΠ΅ΠΌ всСм сСртам

(Π² этом случаС sslpinning ΠΊΠ°ΠΊ Π² ΠΏΡ€ΠΈΠΌΠ΅Ρ€Π΅ Π²Ρ‹ΡˆΠ΅ Π½Π΅ сработаСт (вСдь ΠΌΡ‹ всСм сСртам довСряСм))

ΠŸΡ€ΠΈΠΌΠ΅Ρ€ TrustManager с Π΄ΠΎΠ²Π΅Ρ€ΠΈΠ΅ΠΌ Ρ‚ΠΎΠ»ΡŒΠΊΠΎ сСртификату нашСго сСрвСра

ΠžΠ±Ρ‰ΠΈΠΉ ΠΏΡ€ΠΈΠΌΠ΅Ρ€ здСсь:

https://square.github.io/okhttp/https/
  • Бсылки
  • SSL Pinning: CA - Π΄ΠΎΠ²Π΅Ρ€Π΅Π½Π½Ρ‹ΠΉ
  • SSL Pinning: CA - self-signed
PreviousControllerApiNextGoogle Play Authorization
  1. Programming
  2. Android
  3. Frameworks
  4. Retrofit / OkHTTP

SSLPinning

https://proandroiddev.com/configuring-retrofit-2-client-in-android-130455eaccbd
https://www.codota.com/code/java/methods/okhttp3.OkHttpClient$Builder/sslSocketFactory
val client = OkHttpClient().newBuilder()
httpClient.certificatePinner(
    CertificatePinner.Builder()
        .add("publicobject.com", "sha256//r8udi/Mxd6pLO7y7hZyUMWq8YnFnIWXCqeHsTDRqy8=")
        .build()
)
...
val trustAllCerts = arrayOf<TrustManager>(object : X509TrustManager {
    @Throws(CertificateException::class)
    override fun checkClientTrusted(chain: Array<java.security.cert.X509Certificate>, authType: String) {

    }

    @Throws(CertificateException::class)
    override fun checkServerTrusted(chain: Array<java.security.cert.X509Certificate>, authType: String) {

    }

    override fun getAcceptedIssuers(): Array<java.security.cert.X509Certificate> {
        return arrayOf()
    }
})

val client = OkHttpClient().newBuilder()
val sslContext = SSLContext.getInstance("TLS")
sslContext.init(null, trustAllCerts, null)
val sslSocketFactory = sslContext.socketFactory
client.sslSocketFactory(sslSocketFactory, trustAllCerts[0] as X509TrustManager)
client.hostnameVerifier(HostnameVerifier {_, _ -> true})