Certificate Pinning

OpenSSL, Certpinning and Memory patching. Sounds fun right?

01 April 2026 ~9 min By Isak Van Der Walt
Android Certificates Frida Mobile Objection Pinning Tls Certificate Pinning Rabbitholes Research Reverse Engineering
This blogpost will cover the research I presented at BSides JoBurg. You can watch the talk on YouTube, and code can be found on our GitHub page. This journey started after having looked at some certificate-pinned apps. The majority of apps that appear to implement cert pinning, don’t actually have cert pinning but rather just use a custom trust manager or are not proxy aware (this also applies to things like Flutter). Thus the first step is to ensure application traffic is forced through our proxy. I utilised an OpenVPN server when working with a physical device and the Android emulator proxy settings when working with a virtual device.

Intercepting HTTPS Communication in Flutter: Going Full Hardcore Mode with Frida

16 April 2025 ~20 min By Jacques Coertze
Flutter Frida Ghidra Mobile Pinning Reversing Ssl Android Certificate Pinning
tl;dr In this blog post, I will share insights I learned while researching the Flutter framework and the reFlutter tool. It will dive deep into Flutter’s architecture, some of its inner workings and dependencies, and finally, drill down into the SSL verification logic. The post will end by exploring what the reFlutter tool actually does and my attempts at replicating the same behaviour with Frida. Note: If you are in a pinch on a mobile assessment where the application uses Flutter, the reFlutter tool is a great option. This blog post does not advocate that you need to use Frida logic. It is simply an exercise in seeing whether a Frida equivalent may exist.