Noseyparker - 22 July

My time today was split between 2 tasks:

  • Cleaning up the two TLS connection handlers I recently wrote. In particular I added messages that reported helpful diagnostic information when running in debug mode.
  • Investigating where & how hooks could be added to intercept plain-text HTTPS traffic (before encryption/after decryption).

This investigation is a good learning exercise - I still don't fully understand the design of the nogotofail tool. I'm unsure if has hooks into the Android OS network stack, or if it simply acts as a network proxy. I suspect the later based on testing and reading project documentation.

I'll keep chipping away I feel I'm getting closer ...