Inspecting Android Traffic using Proxyman + apk-mitm

Photo by pixabay.com

Introduction

Source by gohighbrow

Proxy

Source by researchgate
Source by proxyman
Source by mitmproxy
Source by charles
Picture 1 Proxyman Running Status

Android Configuration

Picture 2 Android Proxy Configuration
Picture 3 Android Certificate Installation

Testing

Picture 4 Mobile Browser Network Captured
Picture 5 HTTPS Response
Picture 6 Mobile Application Network Captured

Real Device Issue

Picture 7 Real Device Issue on Network Captured

apk-mitm

$ npm install -g apk-mitm
$ npx apk-mitm <path-to-apk>
Picture 8 Patching APK
Picture 9 Real Device Issue Solved

Certificate Pinning Issue

Conclusion

Software Engineer | Traveler | Guitarist | J-Lovers