-
Notifications
You must be signed in to change notification settings - Fork 25
SSL Pinning
Tim Guenther edited this page Jul 24, 2017
·
4 revisions
SSL Pinning is a method to check the ssl certificate and decline the connect if the check fails.
- In the OWASP VM open the folder
~/OWASP/Resources/https/.- Start the python file in the folder with following command
sudo python https.py. - This will start a lightweight HTTPS server. The certificate is signed for the domain
*.pentest.vm. - Therefore the
/etc/hostsfile in both VMs has following lines:
10.13.13.101 101.pentest.vm 10.13.13.102 102.pentest.vm - Start the python file in the folder with following command
- Configure the
iptablesrules as following via the commandadb shellvia the OWASP VM or press Alt + F1 in the Android VM:- iptables.proxy (Please interchange the IP address with the one of the OWASP VM):
iptables -t nat -A OUTPUT -o eth0 -p tcp --dport 443 -j DNAT --to 10.13.13.102:8080 - Start Burp Suite in the OWASP VM.
Please open an issue in the case you found a mistake in the wiki.