I have an assignment to do which is testing a mobile app that uses secure transport layer to deliver any data to the endpoint. But I need to map the endpoints and already used a few tools like Wireshark and others and they all have the same requirements which is to allow in the app a vulnerable cert to see the endpoints. I can't do that because I don't have a development environment of the app only production. Is there any way I can map those endpoints ?
Like an example :
* Mobile app fetched a users name with a GET request .
* Mobile app uses a specific endpoint via a GET to fetch the data.
* Endpoint is https protected.
I want to map that endpoint with the headers but only trough the mobile app. There is no web application just the mobile app.
http://dlvr.it/S17FWw
G:7-Security (Cyber Security Research and Global Information Security Services)
No comments:
Post a Comment