Projects by popularity

Frida Combined Bypass Anti-Root Flutter TLS Pinning

2 | 231

Uploaded by: @fahad-source

This Frida script combines two runtime instrumentation techniques into a single payload for Android dynamic analysis. The first section installs an anti-root bypass that hooks Java APIs (PackageManager, File, Runtime.exec, SystemProperties, BufferedReader, ProcessBuilder) and native libc functions (fopen, system) to spoof or suppress indicators that detection routines look for, such as Magisk/SuperSu packages, su/busybox binaries, test-keys build tags, and getprop/mount/build.prop reads. The second section disables Flutter's TLS pinning by scanning the loaded Flutter library's executable memory for byte-pattern signatures of ssl_verify_peer_cert across multiple architectures (arm64, arm, x64, x86) and replacing the matched function with a NativeCallback that unconditionally returns 0. Together these bypasses let an analyst run a hardened Flutter app on a rooted device while transparently intercepting its HTTPS traffic through a proxy without triggering root detection or certificate validation failures. Install super proxy vpn app inside the emulator configure http proxy the run the script. check burp you will be able to see the burp requests.

Bypass pinning macOS and iOS

2 | 5K

Uploaded by: @BlueFalconHD

Fully bypass almost every (official) method of pinning requests. Works for system processes, applications, etc. Bypasses protections in AFNetworking, NSURLSession, TrustKit, Cordova, Security.framework, BoringSSL, and normal TLS.