the JustTrustMe xposed module works fine, hook normally. Xposed log print out normally. I review the app sources using JADX, find out Using Okhttp and just check the server certificate . But when I turn on Fiddler or BurpSuite , already import the cert file into android phone system. the app can't receive any server response. Fiddler or BurpSuite got no https log. The app may using other request handle to avoid being hijack. the source code is too hard to read. I am sure the app did not check system whether using proxy or vpn.
the JustTrustMe xposed module works fine, hook normally. Xposed log print out normally. I review the app sources using JADX, find out Using Okhttp and just check the server certificate . But when I turn on Fiddler or BurpSuite , already import the cert file into android phone system. the app can't receive any server response. Fiddler or BurpSuite got no https log. The app may using other request handle to avoid being hijack. the source code is too hard to read. I am sure the app did not check system whether using proxy or vpn.