Detect TLS misconfiguration in Android applications.
Typical misconfiguration:
- Permits cleartext traffic in
AndroidManifest.xml
(or omitted before Android 9) - Permits cleartext traffic in network security configuration (a.k.a. NSC)
- Does not pin any certificates in NSC
- User CA store overrides pinned certificates in NSC
- Trust anchors contain proxy tool CA
- Malformed domain config
- ...
go run ./cmd/tlshunter a.apk b.apk c.apk
# or
go build ./cmd/tlshunter
./tlshunter a.apk b.apk c.apk