Comments (4)
@samyk I'm on iOS 10 and I have noticed the behavior where just enabling SSL kill switch breaks SSL, even when supplying a valid MITM certificate. However I saw this in only a specific app that I suspect is doing extra steps to prevent reverse engineering. In a different app, SSL kill switch works fine without supplying proper certificate for mitm proxy. Interestingly, it seems whether tls_helper_create_peer_trust returns errSecSuccess
always or returns the original_tls_helper_create_peer_trust value does not matter.
edit: I could not see any reference to "boring_ssl" in app logs. I believe that's a non-apple SSL library so SSL kill switch would not handle hooking it properly.
from ssl-kill-switch2.
Interesting -- try grepping for boringssl
instead of boring_ssl
. I believe CFNetwork calls libboringssl which then calls one of the hooked functions, but I'll validate.
from ssl-kill-switch2.
I could not find any mention of boringssl
on iOS 10 in the console logs. It could have changed for iOS 11.
from ssl-kill-switch2.
I won't have time to go back and look at iOS 11, but I added support for iOS 12 just now. To do that, I had to patch a function specifically to bypass the error returned by BoringSSL that you mentioned: ": Function boringssl_session_finish_handshake: line 2643 The peer was not authenticated. Disconnecting the connection.".
After silencing it I was able to bypass pinning validation.
from ssl-kill-switch2.
Related Issues (20)
- Step by step manual for MacOS
- do not support flutter app with handshack
- Iphone XR... iOS 14.2 SSL KILL SWITCH not working! HOT 4
- Detecting SSL Kill Switch 2 HOT 1
- can you build a deb file of the latest version? HOT 2
- not work in ip11,14.7.1 ,unc0ver HOT 4
- For windows?
- Question: Will uninstalling this app restore SSL pinning and my device will be back to full security?
- Please add support non jb device HOT 1
- jailbroke 15.3.1 by palera1n, not working HOT 2
- Is ssl-kill-switch2 work on ios 15.5 jailbreak devices HOT 31
- Not working with AppleID login,IOS13.2.3 HOT 1
- Some Packages couldn't be catched on App Store ios16 HOT 1
- Readme doesn't indicate mTLS support, or lack thereof
- How to use iOS 15.7.6 Palera1n Rootless Jailbreak
- How to install ssl-kill-switch2 on iOS 15.4 Dopamine rootless jailbreak HOT 4
- How to install ssl kill switch 2 on palera1n rootless jailbreak ios 16.7
- Does it work on iOS 16 jailbroken with palera1n?
- iOS 14.3 Support? HOT 14
- ssl kill switch on IOS Simulator HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ssl-kill-switch2.