SSL pinning

2022-12-05

Raspberry Pi Tweaks

openai says i should edit /etc/wpa_supplicant/wpa_supplicant.conf like this to connect to 5G wifi:

network={
ssid="<SSID>"
psk="<password>"
frequency=5180
}

also set frequency of wifi card like this:

1
2
3

sudo ifdown wlan0 && sudo ifup wlan0
sudo iw dev wlan0 set freq 5180

unplug ethernet, then we are golden.

1 2	traceroute baidu.com

how to check avaliable wifi ssids without network-manager:

1 2	sudo iwlist wlan0 scan \| grep ESSID

default login (maybe not):

1
2
3

username: pi
password: raspberry

in order to start sshd, touch ssh under boot partition

recover dhcpcd service:

1
2
3

sudo systemctl enable dhcpcd.service
sudo systemctl restart dhcpcd.service

config the password with proot -S <path_to_rootfs> -b <boot_partition>:/boot -q qemu-arm /usr/bin/bash and passwd

you’ve installed raspap on this device. you use the default credentials. this shit will not connect to our wifi automatically, thus block your way of running docker containers on it with only macbook.

seriously? do you really need docker on macos? or just on raspberry pi?

change apt sources:

sudo sed -i 's|raspbian.raspberrypi.org|mirrors.ustc.edu.cn/raspbian|g' /etc/apt/sources.list
sudo sed -i 's|mirrordirector.raspbian.org|mirrors.ustc.edu.cn/raspbian|g' /etc/apt/sources.list
sudo sed -i 's|archive.raspbian.org|mirrors.ustc.edu.cn/raspbian|g' /etc/apt/sources.list
sudo sed -i 's|archive.raspberrypi.org/debian|mirrors.ustc.edu.cn/archive.raspberrypi.org/debian|g' /etc/apt/sources.list.d/raspi.list

using nmcli to scan and connect wifi

1
2
3

sudo nmcli dev wifi rescan
sudo nmcli dev wifi connect <SSID> password <PASSWORD>

sharing network:

1 2	ssh -R 1080 pi@10.42.0.33

edit /etc/network/interfaces:

auto lo
iface lo inet loopback
auto eth0
iface eth0 inet static
address 10.42.0.33
netmask 255.255.255.0
gateway 10.42.0.1
allow-hotplug wlan0
auto wlan0
iface wlan0 inet dhcp
#wpa-conf /etc/wpa_supplicant/wpa_supplicant.conf
wpa-ssid "<SSID>"
wpa-psk "<PASSWORD>"

install packages:

1
2
3

sudo apt-get -o Acquire::http::proxy="socks5h://127.0.0.1:1080/"  -o Acquire::Check-Valid-Until=false -o Acquire::Check-Date=false update --allow-releaseinfo-change
sudo apt-get -o Acquire::http::proxy="socks5h://127.0.0.1:1080/"  -o Acquire::Check-Valid-Until=false -o Acquire::Check-Date=false upgrade -y

disable ssl pinning

use frida scripts specific to applications

justtrustme xposed

sslunpinning xposed

apk-mitm by repacking apk and resigning

capture, packet routing

recommend to use: PCAPdroid-API

PCAPdroid API reference

1
2

adb shell am start -e action start -e pcap_dump_mode udp_exporter -e collector_ip_address 127.0.0.1 -e collector_port 5123 -e app_filter com.tencent.mobileqq -n com.emanuelef.remote_capture.debug/com.emanuelef.remote_capture.activities.CaptureCtrl

setting up http proxy via adb:

1
2
3

# this does not ensure that the target app is captured.
adb shell settings put global http_proxy <address>:<port>

2022-12-05

Raspberry Pi Tweaks

2022-11-04

Android Packet Capture

disable ssl pinning

capture, packet routing

Links

SSL pinning

2022-12-05 Raspberry Pi Tweaks

2022-11-04 Android Packet Capture

disable ssl pinning

capture, packet routing

Links

2022-12-05

Raspberry Pi Tweaks

2022-11-04

Android Packet Capture