Julien LE PÊCHEUR
Listen to the https traffic of an android application
Prerequisites
- Charles web debugging proxy (https://www.charlesproxy.com/download/)
- Python 3.7+
- A computer (with Android Studio/ADB tools)
- An android phone / Emulator
Proxy settings
To use Charles software, you will have to redirect the traffic of your Android phone to your PC which is running Charles. In the proxy settings of your phone, you will set a manual proxy with the local ip of your computer (just run ipconfig in a terminal to get your local ip) and port to 8888.
You will also need to install Charles SSL Certificate. Download it at http://chls.pro/ssl and simply install it.
At this point, you should be able to go on your Android browser and see decoded http requests in Charles.
Disable SSL Pinning
Patch the APK of the Android app you want to listen to
objection patchapk -s your_apk.apk -2
Install the patched apk on your phone then launch it, it should be stuck on startup screen until you execute this command:
objection explore
Then, you can disable SSL pinning thanks to this command:
android sslpinning disableAt this point, your android application should have launched correctly!
You can now navigate in the app, and see decoded HTTPS Requests in Charles
Julien LE PÊCHEUR
Software developer in France.