[bruno2223]

There is also a way, on rooted Androids, to sniff SSL pinned Apps.

SSL pinned is not an protection for reverse engineering anymore, you may want to add this info on your post.

More info at

https://github.com/ac-pm/SSLUnpinning_Xposed

[Drdrdrq]

+1. Thanks for the link, I didn't know bypassing certificate pinning became so easy.

[dkopi]

Here's a few other ways as well: http://blog.dewhurstsecurity.com/2015/11/10/mobile-security-...