APKs and libraries to analyze Facebook network traffic and bypass SSL pinning on Android devices for educational and security testing purposes.

C# HttpClient / RestSharp Client for tls-client

This repo documents a vulnerability in Siri Shortcuts and Shared Web Credentials (SWC) allowing malformed payloads to persistently execute, trigger retry storms, bypass TLS validation, and request unauthorized entitlements. Confirmed on iOS 18.6.2 with potential iCloud-based propagation.

CVE-2026-0073 — Android ADB daemon (adbd) TLS authentication bypass via EVP_PKEY_cmp type confusion. Gain unauthorized shell access over WiFi using EC/Ed25519 key mismatch. PoC exploit for Android 14+.

2-10g OVH, 90-100G UDP Stable Power

Bypass Meta Business Suite SSL/TLS certificate pinning on Android to intercept & analyze HTTPS traffic — root & no-root, works with Burp Suite & mitmproxy (2026).

Messenger SSL Pinning Bypass patches for studying Android HTTPS traffic, SSL verification, and reverse engineering concepts.

A Frida-based tool for intercepting HTTPS/TLS traffic in Flutter apps on Android and IOS. Supports arm64 & x86_64, bypasses certificate validation, rewrites socket connections to a Burpsuite and hooks Dart network APIs for authorized mobile security testing.

2-10g OVH, 90-100G UDP Stable Power

.NET wrapper for bogdanfinn/tls-client: HTTP/2 and HTTP/3 client with configurable TLS fingerprints.

2-10g OVH, 90-100G UDP Stable Power

2-10g OVH, 90-100G UDP Stable Power

2-10g OVH, 90-100G UDP Stable Power

Bypass SSL pinning in Meta Business Suite on Android to intercept and analyze HTTPS traffic on rooted and non-rooted devices.

2-10g OVH, 90-100G UDP Stable Power

2-10g OVH, 90-100G UDP Stable Power

2-10g OVH, 90-100G UDP Stable Power

2-10g OVH, 90-100G UDP Stable Power

2-10g OVH, 90-100G UDP Stable Power