Bypass Facebook SSL Pinning in Android App.
This project hosts modified versions of the Facebook app (443.0.0.23.229) that include an SSL bypassing patch. This feature enables the interception and analysis of encrypted traffic, particularly focusing on Facebook's private APIs. The repository includes builds for different architectures to support a wide range of Android devices.
- Notice: Users may encounter a security warning indicating that the APKs are unsafe. This warning is triggered by the custom SSL certificate used for signing the APKs.
- Reason: Android systems flag apps signed with custom or unfamiliar SSL certificates as potential security risks. This is a standard precautionary measure.
- Safety: Despite this warning, please be assured that these APKs are safe to use. They have been modified only to enable SSL bypassing, which is essential for analyzing Facebook's private API traffic.
- Caution: Users should understand the implications of bypassing SSL and ensure they are complying with legal and ethical guidelines in their use of these APKs.
- App Name: Facebook
- Package Name: com.facebook.katana
- Version: 443.0.0.23.229
- Supported Architectures: ARM64 (arm64-v8a)
- Architecture: ARM64 (arm64-v8a)
- Description: Optimized for modern devices with ARM64 architecture, this APK offers enhanced performance and stability on the latest Android devices.
| APK File | Architecture | Description |
|---|---|---|
| Facebook_443.0.0.23.229_arm64-v8a.apk | ARM64 (arm64-v8a) | Optimized for modern ARM64 devices. Provides enhanced performance and stability. |
- SSL Bypass Patch: Enables the interception of encrypted network traffic, facilitating the analysis of Facebook's private API calls.
- Multiple Architectures: Tailored APK for ARM64 architectures, enhancing compatibility across different Android devices and emulators.
- Select the APK corresponding to your device's architecture.
- Download and install the APK on your Android device or emulator.
- Ensure that 'Installation from unknown sources' is enabled in your device settings.
- Download and install BurpSuite..
- Follow these instructions to set up a proxy server with BurpSuite.
These modified APKs are for educational and research purposes only. It is essential to comply with all legal and ethical guidelines when intercepting network traffic.
Contributions to this project are welcome. Please submit issues or pull requests for improvements or bug fixes.
For new updates, please send an email to tarun360@duck.com. I will try to provide updates as and when I have some free time.
For any issues or queries, feel free to open an issue.
This project is licensed under the MIT License.