libimobiledevice
How to decrypt iTunes communication with iPhone?
I am currently trying to implement iTunes sync support for a linux server to sync with my iPhone, however when attempting to wireshark both the USB and network connections from iTunes (12.13) to my iPhone (17.5) on Windows 11, the connection is mostly encrypted and unable to be read. Is there any way to decrypt the connection? I have so far failed to get iTunes to route the connection through MITM proxy, and it appears the connection uses Diffie Hellman key exchange anyways. Any help would be appreciated!
Let me explain my implementation. You should know that encryption is determined by EnableSessionSSL and EnableServiceSSL. The device will return true (after iOS 13), so I simulated port 27015 on the host computer and connected to any custom port on the other computer. On the other computer, I listened on the port from the previous step and connected/forwarded to 27015. Change the values of EnableSessionSSL and EnableServiceSSL to false. Also, enable SSL on the program running on the AMDS computer. This works (the computer where iTunes is running communicates with the computer where AMDS is running using clear text).
