Skip to content
/ unpinning-ssl Public

A simple Python script which patches the security configuration of an Android APK file to trust user root certificatesfor bypass SSL-pinning.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

aniruddhmistry/unpinning-ssl

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
apktool.jar
apktool.jar
 
 
sign.jar
sign.jar
 
 
sign.py
sign.py
 
 
unpinning-ssl.py
unpinning-ssl.py
 
 

Repository files navigation

Unpinning-ssl-android

A simple Python script which patches the security configuration of an Android APK file to trust user root certificatesfor bypass SSL-pinning.

Requirements

  • Python3
  • Java

How to Run

git clone https://github.com/aniruddhmistry/unpinning-ssl.git
cd unpinning-ssl


python unpinning-ssl.py <APK filename>

How it works

  1. Decompile the APK file using APKtool
  2. Modify AndroidManifest.xml and network_security_config.xml to trust user certificate
  3. Recompile the APK file using APKtool
  4. Sign the APK file using uber-apk-signer

References

About

A simple Python script which patches the security configuration of an Android APK file to trust user root certificatesfor bypass SSL-pinning.

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages