IOS SSL UNPINNING USING SSL-Kill-Switch2

Ios

Publish Date: 2019-03-25

Update Date: 2021-06-10

Word Count: 240

Read Times: 1 Min

Read Count:

Why SSL pinning?

SSL Pinning is where you ignore that whole thing, and say trust this certificate only or perhaps trust only certificates which are signed by this CA.

Ways to bypass Ios ssl verification certificate pinning

Installing your own CA
Installing Software to iOS Device
Using Objection and Frida
Using disassemblers to modify IPA file

Method used

This method requires jailbroken device and it should be less than ios version 12 for ssl-kill-switch2 to work. To jailbreak the device, Electra is used.

Jailbreak

Install Hydra, using Cydia Impactor and click jailbreak button. After jailbreak is done, Cydia application will be installed. Make sure SSH connection is proper.

cydia

Dependencies

Make sure to install following packages.

Debian Packager
Cydia Substrate
PreferenceLoader

dep install

SSL-Kill-Switch2

Transfer the application to iphone using any method and use below commands to make that work.

$dpkg -i <package>.deb
$killall -HUP SpringBoard

dpkg is used to install the package and another command is to restart that.

Finally, enable ssl-kill-switch2 in settings.

ssl on

Note: Unpinning happens in the runtime. So, No need to mention specific application.

Reference

https://github.com/nabla-c0d3/ssl-kill-switch2

Mukhilan

http://mukhilan.com/Ios/iso-ssl-bypass/

All articles in this blog are used except for special statements CC BY 4.0 reprint polocy. If reproduced, please indicate source Mukhilan !

Mobile Bypass Frida

Comment

DarkCTF Official Writeup - Secret of the Contract

DarkCTF conducted by DarkArmy Official Writeup of Secret of the Contract challenge

2020-10-01 Writeups

Writeups DarkCTF DarkArmy blockchain

SSL UNPINNING USING XPOSED MODULE

Xposed Framework to Bypass Android SSL Verification and Certificate Pinning

2019-02-05 Android

Mobile Bypass Xposed