Thanks for letting me know you found it helpful ☺️

IP's refresh somewhat randomly, but if that's a problem you can always set it to static :)

Yep , have to be on the same network

Ah okay, still very cool, thanks for sharing 😃

ok i found it but the certificate is unverified, what could be the issue?

nevermind! i was confused. i was turning intercept on and then i realized that i needed to go to http traffic on burp to see. when i had intercept on, is when the wifi on my ios device would stop working. thanks!

Yep, you can adjust this in the scope settings

This looks like the certificate wasnt installed properly

Are you asking where to download the proxy? You can get Burp Suite from portswigger.net/

It can be anything, so long as they match, default should be 8080

Same problem here, cant find any solution...

Seems like burp isn't running on that port, check it's enabled and the proxy is running into the port you're trying

@@JSONSEC The proxy is running, but once I connect, it says next to my wifi name “No Internet Connection” and on safari “server stopped responding”

oh it works on the other iphone that even i didnt jailbreak.. anyway thank you for your video

Seems like it's a problem with the certificate for the first issue. Try generating it and importing it again

I think you can set up some rules in the proxy config yeah. But would probably be better building a pi hole for your home network

Any that doesn't bundle is own certs and use SSL pinning

when trying to get my ca certificate

I think this was a 6s

@@JSONSEC okay sir, thanks for your information

You don't need it for this tutorial. But checkout Reddit r/jailbreak for specific instructions

Thats 'meant' to happen, you need to install the certificates to allow it to pass through SSL traffic

what applications does it not work on?

does it work on snapchat and tiktok and messages?

The apps it dosent working have SSL pinning, this can be bypassed too but much more difficult. Have a video planned to go over it.

@@JSONSEC Did you make that video mate, I did not work for instagram, and on HelloTalk I was only able to send post requests, but my device was still somehow recieveing data but it was not working properly

Then this tutorial will not work for you...

JSON SEC any methods for people to do it solely on there iPhone?

JSON SEC I mean, imagine the the market that could be tapped into for a proxy server for ios 🤷‍♂️ 🤔

I guess I've never really considered that as a practical use-case. I have seen some proxy apps out there on the app store, but haven't bothered with them really you'll just be too constrained carrying penetration tests just from an iPhone. far too limiting...

It's not what....?

Burp is free

@@JSONSEC for the professional ?

Whats your issue?

@@JSONSEC its not capturing the traffic on ios 16, even though I installed the certificate

Have you configured ip address and ports correctly?

@@JSONSEC yea i did, now the problem is solved, in ios 16 we have to enable developer options first or else debugging just wont work!

Yes.

I could explain why it's safe for me to show that IP address, but I want to understand why you think it's an issue.

@@JSONSEC because you are showing other people your location

@BigCheese Wheel That's actually incorrect. An IP Address does not reveal your exact physical location, you can also use other tools to obscure it further. Additionally this IP address shown is an *Internal* IP address which is what's used for my local network only. Each device on your local network has it's own IP address, but when you connect to the internet, all the devices on your network share the same IP Address and your router forwards the packets to the correct device. This process is known as NAT. This is all to say that revealing an Internal IP address within my network (not my public IP) is harmless, most networks by default will have the same IP Range internally (192.168.0.xx). Does that make sense, let me know if you need anything clarified :)

@@JSONSEC I've always wondered WHY some people show it and other's don't this makes so much sense. Thanks