Tips ‘n’ Tutorials

Nettitude Labs will be releasing tips and tutorials via articles and videos over the coming months.  They will start to appear here over the coming weeks.

How to fix Burp Suite SSL/TLS connection problems

Intercepting SSL/TLS connections works seamlessly 95% of the time. This tutorial aims to help with the 5% of the time where Burp Suite won’t play nice and will throw a javax.net.ssl.SSLException, getting you back to work.

Article link

Overcome Burp Suite SSL/TLS connection problems

TLS Certificate Pinning – An Introduction

Certificate pinning is the process of associating a host with their expected X.509 certificate or public key. Once a certificate or public key is known or seen for a host, the certificate or public key is associated or ‘pinned’ to the host.

Article link

TLS Certificate Pinning 101

Using Frida to Bypass Snapchat’s Certificate Pinning

In this article, we will be looking into how we can leverage the lack of strong binary protections (as well as complete lack of runtime protections) to bypass, with relative ease, the certificate pinning mechanism in Snapchat’s latest release for Android.

Article link

Using Frida to Bypass Snapchat’s Certificate Pinning