Pokemon Go: Part 2, Certificates Gone Wrong

Abe Lin
Abe Lin
Feb 20, 2018 · 4 min read
As a last resort, you can always unplug the monitor to foil the hackers.
MITM proxy captures data sent from your app to the servers,
Why play PoGo when you can reverse engineer it to play itself?
The portion of code in the API that verified SSL certificates.
Me trying to understand SSL.

Welcome to a place where words matter. On Medium, smart voices and original ideas take center stage - with no ads in sight. Watch
Follow all the topics you care about, and we’ll deliver the best stories for you to your homepage and inbox. Explore
Get unlimited access to the best stories on Medium — and support writers while you’re at it. Just $5/month. Upgrade