Skip to content

Network APIs

Overriding Default Implementation/behavior to bypass certificate checks in testing/development phases left in the application

  • Overriding TrustManager look for keywords checkClientTrusted, checkServerTrusted, and getAcceptedIssuers
  • Does the application ignore TLS issues in webViews. Look for keywords onReceivedSslError
  • Is the app debugable ? does that affect the previous points
  • is HostnameVerifier properly configured ? is it accepting any hostname ?

Testing Security Providers

  • Use Xposed to hook into the package, then hook into with the method getProviders (with no arguments). The return value will be an array of Provider
  • Determine whether the first provider is GmsCore_OpenSSL.