certunpinner

Script used to perform automatic certificate unpinning of an APK by adding a custom network security configuration that permits user-added CA certificates.

Prerequisites

• Apktool
• Android Debug Bridge (adb), get it from the SDK platform tools or bundled with Android Studio
• keytool and jarsigner, get them with the latest Java Development Kit (jdk)

Usage

$ python3 certunpinner.py --help
usage: certunpinner.py [-h] [--path-apktool PATH_APKTOOL] [--path-adb PATH_ADB] [--path-keytool PATH_KEYTOOL]
                       [--path-jarsigner PATH_JARSIGNER] [--outfile OUTFILE]
                       apkfile

Certificate Unpinner

positional arguments:
  apkfile               Path to the APK file

optional arguments:
  -h, --help            show this help message and exit
  --path-apktool PATH_APKTOOL
                        Path to the apktool executable
  --path-adb PATH_ADB   Path to the adb executable
  --path-keytool PATH_KEYTOOL
                        Path to the keytool executable
  --path-jarsigner PATH_JARSIGNER
                        Path to the jarsigner executable
  --outfile OUTFILE     Output file

GitHub

https://github.com/antoinet/certunpinner