Open utterances-bot opened 4 years ago
basspup
commented
4 years ago Hey, thanks for the great writeup! I could use some help though..
When I enable SSL Proxying and click download a second time, I get an error that says "iTunes can’t verify the identity of the server “p46-buy.itunes.apple.com”. The certificate for this server is invalid."
Everything seemed to work fine up until this point..
Any help would be greatly appreciated! Thank you so much :)
kiliankoe
commented
4 years ago Hi @basspup, thanks for the comment! This is probably due to the fact that your system doesn't yet trust the Charles root certificate. This is a one-time action before SSL proxying works.
Go to Charles menu Help > SSL Proxying > Install Charles Root Certificate to add Charles' certificate to your keychain. Since Charles' certificate is "untrustworthy" (as in not signed by a trusted party), macOS won't trust it by default. Charles generates this certificate specifically on your machine though, so there's no worries that others can use the same certificate to actually attack you. Trusting it in your keychain is therefore perfectly fine.
basspup
commented
4 years ago @kiliankoe, that worked like a charm. Thank you!
mcyz
commented
4 years ago @basspup Is this still work for you ? I can't find appExtVrsId in request
Downloading older iOS app versions with iTunes | blog.kilian.io
https://blog.kilian.io/itunes-mitm/