Comments (1)
This probably depends on the implementation of your proxy really, I'm afraid, not these scripts.
This is a bit tricky to solve, because when the traffic is redirected to the proxy, the original TCP packet destination is lost (it's replaced with the proxy's address). To handle this, most proxies use the HTTP Host header that's inside the packet data to work out where to send the request, but that requires handling & parsing the HTTP request, and for HTTPS that means you have to decrypt TLS.
If you don't have decrypt the traffic, for redirected traffic, all the proxy receives is the contents of the client's TLS hello packet. That will probably (not always) include a server name indication (SNI) which tells you which domain name the client is trying to connect to.
SNI doesn't include the port though (you can guess 443, but that's a guess) and it's there's plenty of edge cases. In the specific output you showed, the target port is 8888 so 443 will definitely be wrong. Unless you build some other custom mechanism, there is no standard way that your proxy server will know that the traffic is supposed to go to port 8888 unless you decrypt HTTPS and read the headers, or you add some kind of rule there to send all traffic to that destination.
In practice, this is almost certainly not a problem with these scripts, so I'm going to close this issue. You'll need to work out how to configure your proxy to handle the challenges above, and/or set up full HTTPS interception instead.
from frida-interception-and-unpinning.
Related Issues (20)
- Disable jailbreak detection HOT 3
- I have an app that has certificate transparency failed, is there any script that I can use? HOT 1
- SSLPeerUnverifiedException: Certificate transparency failed HOT 1
- issues with unpinning of com.segway.mower and com.hansgrohe.poseidon HOT 5
- Frida: The 'argv' option is not supported when spawnin HOT 1
- Nigloland App: Certificate transparency failed HOT 5
- Hi
- Not Work = Raw Custom-Pinned Resquest HOT 3
- [FIXED] Not working with bereal HOT 3
- [ ] Unrecognized TLS error - this must be patched manually HOT 8
- Fishing Clash app. Some super-duper pinning protection. HOT 2
- Ignorar detectar VPN httptoolkit HOT 5
- Bypass la fijación SSL de IOS 15-16 con httptoolkit + script frida HOT 3
- Error: access violation accessing 0x5d8 HOT 1
- this script fails with com.audioteka but another works HOT 2
- Error with file : android-certificate-unpinning.js HOT 1
- not able to sniff com.peacocktv.peacockandroid HOT 10
- Not working with com.bumble.app HOT 3
- Add Support for Intercept Flutter HOT 7
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from frida-interception-and-unpinning.