Hello,
I have successfully setup Fiddler Everywhere on my iMac as proxy, installed certificate and can watch traffic from my iPhone to HTTPS-sites using Chrome or Safari. Great!
But I would like to inspect traffic of other apps – like Find My – to Apple's servers. The app says "Find My not available, check network connection". It seems that the requests are blocked because the CRT is not valid for app traffic, just for browsers?!
Please advise, any help is greatly appeciated.
Regards
Döner
Interesting ... when I switch to FindMy app on phone I can see several requests going to https://p107-fmfmobile.icloud.com/fmipservice/friends/
Obviously the link for the people / friends part of FindMy, but when it tries to access other data (documented is that is making requests to https://gateway.icloud.com/acsnservice/) e.g. for AirTags or other Apple devices, it shows a message "FindMy not available" (blocked by Fiddler?) on phone and nothing is logged via Fiddler ...
I have already cleared the "Bypass" window in settings, but nothing changed.
When I disable proxy, all is good.
Any idea?
I know understand that this very likely happens because those apps use "certificate pinning", which is hard to bypass.
I have set Fiddler to disable decryption of the URLs but they don't show up in the log window, although the app must making the requests because I can see it showing the data it receives by doing so.
Actually: it would be absolute sufficient to see what URL the app calls, including the PATH of that POST requests. I don't need to see the data or anything encrypted ... any idea?