Research Academy
My account Customers About Blog Careers Legal Contact Resellers

Burp Suite User Forum

Create new post

problem

joneskla | Last updated: Oct 25, 2020 05:16PM UTC

Hi, i have IOS 14 and i'm not able to make it work with MANY apps, like facebook and other apps, i installed certificate, and made it as trusted certificate, websites work normally but not appls, i tried disabling TLS1.3, didn't work either, what should i do? screenshot of errors i'm getting: https://imgur.com/qNtOlq8

Liam, PortSwigger Agent | Last updated: Oct 26, 2020 08:49AM UTC

Which websites are you having issues with? Could you provide a list?

joneskla | Last updated: Oct 27, 2020 03:47PM UTC

i said facebook IOS app, and icloud services (some failed the sll pinning), at this point i'm unsure about what to do

Liam, PortSwigger Agent | Last updated: Oct 28, 2020 12:23PM UTC

You could run Burp with an upstream proxy: - https://portswigger.net/support/burp-suite-upstream-proxy-servers Have you tried piping the traffic via ZAP proxy?

joneskla | Last updated: Oct 31, 2020 02:59PM UTC

this doesn't work, look at the errors im getting: https://prnt.sc/vaqx3b

joneskla | Last updated: Nov 01, 2020 11:42PM UTC

come on please give me a working solution, try it youself on facebook IOS app, and when it works let me know about the steps i should follow..

Liam, PortSwigger Agent | Last updated: Nov 02, 2020 03:49PM UTC

We don't currently have a solution. Are you able to proxy the traffic via Zap?

joneskla | Last updated: Nov 04, 2020 07:17AM UTC

zap works with websites, but facebook app still doesn't work...

Liam, PortSwigger Agent | Last updated: Nov 05, 2020 05:06PM UTC

As it doesn't work on either proxy, this suggests that Facebook has implemented some security functionality that is making intercepting the traffic difficult. I've made a note to discuss this with our team. However, I don't think that mobile app testing will be in our upcoming roadmap.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.