Android-SSL-TrustKiller
Traffic interceptor
Bypasses SSL certificate pinning to allow intercepting encrypted traffic from many applications on Android devices.
Bypass SSL certificate pinning for most applications
708 stars
48 watching
128 forks
Language: Java
last commit: over 6 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 ac-pm/sslunpinning_xposed | Allows bypassing of SSL certificate validation in Android apps to intercept traffic | 783 |
| isecpartners/android-killpermandsigchecks | A tool to bypass Android's signature and permission checks for Inter-Process Communications (IPC) using Cydia Substrate. | 83 |
 nvisosecurity/magisktrustusercerts | Automatically adds user certificates to the system root CA store for secure HTTPS traffic on Android devices | 1,770 |
 maxtoyberman/react-native-ssl-pinning | Provides SSL pinning and cookie handling for secure networking in mobile apps using OkHttp 3 on Android and AFNetworking on iOS. | 346 |
 proxymanapp/atlantis | A tool for intercepting and capturing HTTP/HTTPS traffic from iOS apps without proxying or modifying the app's network activity | 1,278 |
| isecpartners/introspy-android | An Android tool to help identify security issues by tracking API calls at runtime and analyzing potential vulnerabilities | 467 |
 kungia09/bangcle | Protects Android apps from malicious activities by hardening and encrypting them using dynamic loading of encrypted dex files. | 389 |
| isecpartners/android-opendebug | A tool to make any Android application debuggable on a device by injecting hooks using Cydia Substrate. | 131 |
 a-yatta/amdh | Automates scanning and hardening of Android devices to detect malware and protect user privacy. | 200 |
 encodegroup/aggressiveproxy | An instrument used to identify and exploit network proxy configurations and execute shellcode on compromised systems | 140 |
 leonardonve/sslstrip2 | A tool to bypass HSTS protection by modifying HTTPS connections to HTTP with hostname information | 312 |
 portswigger/html5-auditor | An HTML validation and security testing tool for identifying vulnerabilities in web applications | 4 |
 x0rz/phishing_catcher | Automated system for detecting suspicious TLS certificate issuances | 1,712 |
 justeattakeaway/httpclient-interception | A .NET Standard library for intercepting and manipulating HTTP requests and responses in .NET applications. | 361 |
 s0lst1c3/eaphammer | A toolkit for exploiting weaknesses in WPA2-Enterprise networks to gain unauthorized access to credentials | 2,194 |