SSL Error from HTTPS Request/Response
- You could not see any HTTPS traffic on the Proxyman app
- You get SSL Error from HTTPS Requests and Responses.
- You get SSL Handshake Failed
There are many reasons why SSL Handshake Failed, please walk through the below steps to address the problem.
- Follow this iOS Setup Guide -> Make sure you've installed & trusted the Proxyman CA Certificate on your device.
- If you're intercepting some popular apps (e.g. Facebook, Instagram, Apple, Whatsapp, ...): They are protected by SSL Pinning -> Impossible to intercept them.
- Verify that your iOS app doesn't have SSL Pinning. If yes, please disable it.
Follow this iOS Simulator Setup Guide -> Make sure you've installed & trusted the Proxyman CA Certificate on your device.
- Follow this Android Device Setup Guide -> Make sure you've installed & trusted the Proxyman CA Certificate on your device.
- Verify that the 5th step is completed (by adding your domain to two files: res/xml/network_security_config.xml and AndroidManifest.xml)
- If you're trying to intercept Android apps that you're not an owner -> It isn't possible to intercept -> ❌
- Follow this Android Emulator Setup Guide -> Make sure you've installed & trusted the Proxyman CA Certificate on your device.
- Verify that the 5th step is completed (by adding your domain to two files: res/xml/network_security_config.xml and AndroidManifest.xml)
- If you're trying to intercept Android apps that you're not an owner -> It isn't possible to intercept -> ❌
If you've tried and verified all the above steps, but still get SSL Errors?
- 1.Get your devices
- 2.Open the Web Browser (Safari on iOS or Google Chrome on Android)
- 3.Visit https://google.com
- 4.Select "Enable SSL Proxying" on this domain on the Proxyman app for macOS
- 5.Verify if you're able to see the HTTPS Response or not.
- 1.You're able to see https://google.com HTTPS Response, which means you set up the Certificate correctly -> It's good ✅
- 2.The problem might be from your apps. Let's try again on your domains/apps -> If the SSL Error still happens, a high chance that this app is protected by the SSL Pinning.
- 3.If you believe that it's not an SSL Pinning case, please open a ticket on Github (Please mention what device, OS Version, app name, etc)
- It seems Proxyman Certificate is not installed or trusted correctly in your devices. Please go back to the 2.1 Mobile Device section and follow it.
- If you verify that everything is done, but the SSL Error still happens, please open a ticket on Github (Please mention what device, OS Version, app name, etc)
I get SSL Errors from:
- Mac devices (Macbook, Mac Mini, Mac Studio) -> Install & Trust the Certificate on your Macbook -> Follow macOS Guide
Some networking libraries (Ruby, NodeJS, Python, Golang) don't trust the self-signed certificate by default. We have to explicitly tell the library to trust the certificate.
=> To fix it, please google "<Your framework/library> self-signed certificate", a found some answers on StackOverflow.
- You're still unable to see HTTPS Response on your app, it seems that your app is protected by SSL-Pinning, which prevents MitM apps from seeing the content. All popular apps (Facebook, Apple, Instagram, Messenger, etc.) have this feature.
- Please temporarily disable SSL-Pinning and try again.
Read more about SSL-Pining: https://www.raywenderlich.com/1484288-preventing-man-in-the-middle-attacks-in-ios-with-ssl-pinning
Please also mention: Proxyman macOS/Windows, Proxyman version, your iOS/Android device, etc.