It will not work (this is a custom specific certificate, you still want a CA-signed per-host certificate). Go to burp and use the "Import / Export CA certificate" option and select your newly generated certificate (use the pfx file).ĭO NOT use "Edit Proxy Listener -> Certificate -> Use a custom certificate". Openssl pkcs12 -export -out BurpRootCA.pfx -inkey myBurpCA.key -in root-ca.crt Openssl req -x509 -nodes -newkey rsa:4096 -keyout myBurpCA.key -out root-ca.crt -days 365 -subj "/C=CA/O=Burp/OU=Certification Services/CN=MyBURPRootCA/" -addext "extendedKeyUsage=1.3.6.1.5.5.7.3.1" Generate a certificate with the following commands: Then on your iPhone set the proxy go to and follow the proper installation. Certificate and private key in PKCS#12 format.Open Burp (make sure to update to the latest version) Prepare the certificate to import it to Burp and set export password as "burp" openssl pkcs12 -export -out Burp.pfx -inkey BurpCA.key -in BurpCA.cer Run openssl req -x509 -newkey rsa:2048 -out BurpCA.cer -outform PEM -keyout BurpCA.key -days 720 -verbose -config BurpCA.cnf -nodes -sha256 -subj "/CN=ROTTEN APPLE CA" Make a new folder: mkdir BurpCA & cd BurpCAĬreate BurpCA.cnf file with this content: ĭistinguished_name = req_distinguished_name I tried Charles Proxy, but I need TLS 1.3.įor Burp on iOS 13 the provided certificate by the proxy does not work, I had generated my own doing the following. I have followed this and this tutorial, but no luck. User-Agent: Mozilla/5.0 (iPhone CPU iPhone OS 13_1_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.1 Mobile/15E148 Safari/604.1 Host: Accept: text/html,application/xhtml+xml,application/xml q=0.9,*/* q=0.8 I can see in the Burp Suite HTTP History that a connection to Google was made but the connection was closed. I can't get out to the internet on my phone. I also trusted the cert in About > Cert Trust Settings. I have set my wifi to use my computer's IP address as the proxy on the correct port in Proxy > Options > Proxy Listeners.įrom my iOS device I used Safari and went to and installed the CA Cert. I have setup Burp Suite Community Edition 2.1.04 I am trying to run Burp Suite proxy to do some testing from my phone.
0 Comments
Leave a Reply. |