Unless the app uses hard-coded root certs, you can still capture and decrypt ssl/tls traffic using a custom root cert so the device trusts your MITM server. It’s just a bit more work.
🇨🇦
- 0 Posts
- 5 Comments
Joined 1 year ago
Cake day: July 1st, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
23·1 year agodeleted by creator
39·1 year agoIt’s the 21st of 1946, June.
Some fine gentlemen.
Purchase History will be for checking if you’ve purchased the ad-free unlock. (maybe carried over from BoostForReddit too? Not sure.)
Location is usually less about your location and more about your wifi network. Knowing when to refresh the connection due to network switching or performing actions based on what network you’re on.
Your location can be determined from your wifi info + databases of networks that google/apple/microsoft each provide/maintain so location permissions are required to see that info.
When the private key used to decrypt your game engine is actually just a hash of an image of a coconut…