[Tool]ProxyRegistryEditor - Edit Registry via proxy (using Windows Insider as target)

ADeltaX

ADeltaX

Senior Member
Feb 16, 2015
130
89
0
Somewhere
www.adeltax.com
Feb 22, 2015 at 3:36 PM
snickler said:
The ONLY way we will be able to get it working with the latest insider app is if we had the cert that's being sent from the response that returns the flights.

EDIT: ohhh.. This is it. The wpflights.trafficmanager.net.cer is the one :). Let's see what we can do (although I don't know how far we can get with just purely a .cer).

So far I've intercepted and set the client certificate to the one it's looking for in OnBeforeRequest and OnBeforeResponse. That = no go.

Someone will figure it out :p
Click to expand...
The problem is Fiddler send the certificate to the server, not to the client (Will still use the autogenerated certificate "DO_NOT_TRUST").
I tried:
Code: 
string path = "location of the certificate"
oS.oResponse["https-Client-Certificate"] = path;
Fiddler.FiddlerApplication.oDefaultClientCertificate = new X509Certificate(path);
 
snickler

snickler

Retired Forum Moderator / Inactive Recognized Deve
Aug 17, 2010
1,320
1,130
0
Dub V
www.sinclairinat0r.com
Feb 22, 2015 at 3:47 PM
ADeltaX said:
The problem is Fiddler send the certificate to the server, not to the client (Will still use the autogenerated certificate "DO_NOT_TRUST").
I tried:
Code: 
string path = "location of the certificate"
oS.oResponse["https-Client-Certificate"] = path;
Fiddler.FiddlerApplication.oDefaultClientCertificate = new X509Certificate(path);
Click to expand...
Yup, I tried something very similar.
 
snickler

snickler

Retired Forum Moderator / Inactive Recognized Deve
Aug 17, 2010
1,320
1,130
0
Dub V
www.sinclairinat0r.com
Feb 22, 2015 at 5:54 PM
ADeltaX said:
The problem is Fiddler send the certificate to the server, not to the client (Will still use the autogenerated certificate "DO_NOT_TRUST").
I tried:
Code: 
string path = "location of the certificate"
oS.oResponse["https-Client-Certificate"] = path;
Fiddler.FiddlerApplication.oDefaultClientCertificate = new X509Certificate(path);
Click to expand...
Now that I think of it.. I don't see a way around this at all since we don't have the cert. Once we decrypt the process, it automatically uses the DO_NOT_TRUST cert for this process. No way we can decrypt and set request cert (It's not looking at ClientCerts at all) with Fiddler without the cert that's needed.
 
ADeltaX

ADeltaX

Senior Member
Feb 16, 2015
130
89
0
Somewhere
www.adeltax.com
Feb 22, 2015 at 9:06 PM
snickler said:
Now that I think of it.. I don't see a way around this at all since we don't have the cert. Once we decrypt the process, it automatically uses the DO_NOT_TRUST cert for this process. No way we can decrypt and set request cert (It's not looking at ClientCerts at all) with Fiddler without the cert that's needed.
Click to expand...
An idea is to use Fiddler as Reverse proxy.
Redirect url to a local server (for example using WAMP) and use OpenSSL.
 
snickler

snickler

Retired Forum Moderator / Inactive Recognized Deve
Aug 17, 2010
1,320
1,130
0
Dub V
www.sinclairinat0r.com
Feb 22, 2015 at 9:10 PM
ADeltaX said:
An idea is to use Fiddler as Reverse proxy.
Redirect url to a local server (for example using WAMP) and use OpenSSL.
Click to expand...
That was something I started on. Using it as a Reverse Proxy and then having a local IIS Server handling the response and sending the X509Cert.. Also would probably have to involve setting wpflights.trafficmanager.net to your hosts file to point to 127.0.0.1. I don't know IF it will actually work though, but it's worth a shot.

Try it out :p
 
You must log in or register to reply here.

New posts

Our Apps
Get our official app!
The best way to access XDA on your phone
Nav Gestures
Add swipe gestures to any Android
One Handed Mode
Eases uses one hand with your phone