xbox-scene.com archived forum

Xbox 360 Forums => Xbox 360 Hacking Forums => Software Exploits Development Research => Topic started by: showmeyourboxers on March 14, 2013, 09:46:08 PM

Title: Mitm - Ssl Certificate Injection
Post by: showmeyourboxers on March 14, 2013, 09:46:08 PM

I'm wondering if it's possible to inject a fake/self-signed certificate authority cert into my xbox so that it would become possible to perform a man in the middle attack (packet capture) on the network traffic between my xbox and a third party service. I'm not interested in the traffic between the xbox and microsoft (I know it's encrypted beyond the standard SSL) so much as i am the traffic between a certain app installed on the xbox. I do know for a fact that the app on the xbox communicates with a third party service directly instead of shuttling it through xboxlive. Now i just need to intercept it and see what it is.

Basically, i'm just trying to figure out if its worth my time to try and figure this out. I didn't want to spend weeks working on this only to discover someone else has tried it before and found it was impossible.

Thanks!




Title: Mitm - Ssl Certificate Injection
Post by: Aldanga on March 15, 2013, 06:50:50 PM

Nope.