top | item 22709109

(no title)

You can pretty easily see all the traffic on your own phone. You can even do it on device

https://apps.apple.com/us/app/charles-proxy/id1134218562

discuss

bscphil|6 years ago

Does this work with apps that do their own TLS using their own pinned certs? I don't see how it could. Surely that's a lot of high profile apps these days.

If this app works without root, it must be possible to apps on iPhone to add their own certificates to the system, which are then trusted by other applications - that would already be pretty alarming. I think Android still requires certificates to be manually imported by the user. Maybe this app points you to instructions on how to do this, but the description makes it sound very automatic.

youngtaff|6 years ago

If you've got a Jailbroken phone, this post explains how to extract the TLS keys (to decrypt the traffic) using a Frida script

https://andydavies.me/blog/2019/12/12/capturing-and-decrypti...

azinman2|6 years ago

You can add an ssl certificate but if they do cert pinning then it breaks. Most don’t do cert pinning.

saagarjha|6 years ago

No, you’d need to jailbreak or modify the application for that.

Zenbit_UX|6 years ago

If you can set your own DNS on iOS why not just use something like nextDNS.io?

cerberusss|6 years ago

NextDNS is fantastic. I use it to block ads on my iPhones and iPads.

JMTQp8lwXL|6 years ago

Seeing it != blocking it.

jbigelow76|6 years ago

If you can see it you can make an informed choice if the tradeoff is worth it.

pimeys|6 years ago

You basically need your own VPN server with Pi-hole installed to control the tracking. It is a very effective way to block this, but not that easy to setup.

dewey|6 years ago

So https://guardianapp.com then?