If you've got root on the client, certificate pinning can be disabled ;) Usually it boils down to patching whatever method or system call the library in question is using to pin the HTTPS request, e.g. on iOS jailbreaks there's a tweak called "SSL Kill Switch" which hooks the native HTTP client to remove cert pinning. On a CI machine or desktop, you can probably do something similar with LD_PRELOAD trickery.
edit: Yeah, I found this library [0] that does it (actually disables validation entirely) with LD_PRELOAD and works with openssl, but no commits since 2018 so might not work. Also I'm pretty sure proxychains uses LD_PRELOAD and it might include some option to disable pinning, idk.
edit: Yeah, I found this library [0] that does it (actually disables validation entirely) with LD_PRELOAD and works with openssl, but no commits since 2018 so might not work. Also I'm pretty sure proxychains uses LD_PRELOAD and it might include some option to disable pinning, idk.
[0] https://github.com/DavidBuchanan314/libleakmydata