search

ryanking13 / android-SSL-unpinning

Bypass android application SSL-pinning
189 stars 28 forks source link
android apk https reverse-engineering ssl

readme

android-SSL-unpinning

A simple Python script which patches Android APK file to bypass SSL-pinning.

Requirements

How to Run

git clone https://github.com/ryanking13/android-SSL-unpinning
cd android-SSL-unpinning

python patch.py com.apk.file.to.patch.apk

How it works

  1. Decompile the APK file using APKtool
  2. Modify AndroidManifest.xml and network_security_config.xml to trust user certificate
  3. Recompile the APK file using APKtool
  4. Sign the APK file using uber-apk-signer

References