TLS to SSLv3 Downgrade

I have an Android app that will connect to a server with TLS 1.2. The server also supports SSLv3. I would like to know if it’s possible to configure MITM Proxy that will downgrade the connection from TLS 1.2 to SSLv3.

Hi @christypriory,

You can do a man-in-the-middle attack and have a SSLv3 connection between mitmproxy and the server, but that’s generally not recommended of course. There are no known downgrade attacks for TLS 1.2 to SSLv3.

Can you please let me know the command line to force the sslv3 connection ?