Coder Social home page Coder Social logo

Comments (7)

kings0527 avatar kings0527 commented on June 21, 2024

SSLHandshake: Remote host closed connection during handshake
9.0.2/iphone 6

from ssl-kill-switch2.

kings0527 avatar kings0527 commented on June 21, 2024

https://itunes.apple.com/cn/app/99-rockets/id922871241?mt=8
Complete
200 OK
HTTP/1.1
GET
Yes
application/json; target=itml; charset=UTF-8
/192.168.1.105
itunes.apple.com/221.228.64.212

this remote server can capture

but

https://init.itunes.apple.com
Failed

SSLHandshake: Remote host closed connection during handshake

HTTP/1.1
CONNECT

No

/192.168.1.105
init.itunes.apple.com/221.228.64.212

this server can't.

from ssl-kill-switch2.

Hope4hope avatar Hope4hope commented on June 21, 2024

For proxy-ing the App Store things are different; please read the README as it has a link to the instructions. And also, make sure you restart the Apps after having enabled SSL Kill Switch.

The SSL Kill Switch had a MobileLoader filter so that the code disabling certificate validation would only be loaded into apps linking the UIKit bundle (ie. applications with a user interface). This was initially done to restrict the effect of the SSL Kill Switch to App Store apps only. However, itunesstored is a daemon that doesn’t have a user interface, hence the filter prevented MobileLoader from injecting the SSL Kill Switch into the process.

http://iphonedevwiki.net/index.php/MobileSubstrate#MobileLoader

PS: SOURCE:
http://nabla-c0d3.github.io/blog/2013/08/20/intercepting-the-app-stores-traffic-on-ios/

from ssl-kill-switch2.

nabla-c0d3 avatar nabla-c0d3 commented on June 21, 2024

@Hope4hope can you confirm that it works once you've followed the instructions ? If yes I will close the issue.
Thanks!

from ssl-kill-switch2.

kings0527 avatar kings0527 commented on June 21, 2024

my filter bundle is "com.apple.UIKit".

It can work success.

I guess some server of Apple used SSL 3.0 protocol and the server will check client's cert, but the tweak just turn off client's SSL.

Now I complete a tweak to capture AppStore.

You can hook sslread and sslwrite.

from ssl-kill-switch2.

mskmkt0704 avatar mskmkt0704 commented on June 21, 2024

@nabla-c0d3 i fixed it.i parsed itunesstored with IDA,finally i find AuthKit did the real job for login.
so add com.apple.AuthKit to filter bundle,then it worked.

from ssl-kill-switch2.

nabla-c0d3 avatar nabla-c0d3 commented on June 21, 2024

@mskmkt0704 Nice! I will add AuthKit to the filter then. Thanks!

from ssl-kill-switch2.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.