First, we check if SSL Pinning is enabled in the target Android app by opening up the app. We can see that there is error during the communication between the mobile client and server.
Step 1: Start Frida server in the Android device
adb shell "/data/local/tmp/frida-server &"
Step 2: Run Objection on the target application
objection -g sg.parking.streetsmart explore -q
Step 3: Run the command to disable SSL Pinning in the Android app
android sslpinning disable
Console showing that the method for certificate pinning is bypassed.
Now we can read the request made by the app.
If you face any error and require to restart the Frida-Server, you can kill the frida server process by following these commands:
ps -e | grep frida-server
kill -9 pid <pid of the frida-server>
Be First to Comment