kiliankoe / blog

đź“ť me writing stuff
https://blog.kilian.io
2 stars 0 forks source link

itunes-mitm/ #5

Open utterances-bot opened 4 years ago

utterances-bot commented 4 years ago

Downloading older iOS app versions with iTunes | blog.kilian.io

https://blog.kilian.io/itunes-mitm/

basspup commented 4 years ago

Hey, thanks for the great writeup! I could use some help though..

When I enable SSL Proxying and click download a second time, I get an error that says "iTunes can’t verify the identity of the server “p46-buy.itunes.apple.com”. The certificate for this server is invalid."

Everything seemed to work fine up until this point..

Any help would be greatly appreciated! Thank you so much :)

kiliankoe commented 4 years ago

Hi @basspup, thanks for the comment! This is probably due to the fact that your system doesn't yet trust the Charles root certificate. This is a one-time action before SSL proxying works.

Go to Charles menu Help > SSL Proxying > Install Charles Root Certificate to add Charles' certificate to your keychain. Since Charles' certificate is "untrustworthy" (as in not signed by a trusted party), macOS won't trust it by default. Charles generates this certificate specifically on your machine though, so there's no worries that others can use the same certificate to actually attack you. Trusting it in your keychain is therefore perfectly fine.

basspup commented 4 years ago

@kiliankoe, that worked like a charm. Thank you!

mcyz commented 4 years ago

@basspup Is this still work for you ? I can't find appExtVrsId in request