SSL Sniffing with Android x86 and frida

  1. Install Android x86 (I used 8.1r3)
  2. Configure with virtwifi
  3. Long press to access advanced menu’s proxy settings
  4. Proxy traffic to BurpSuite or similar
  5. Install frida-server on Android x86
    1. follow https://www.frida.re/docs/android/
    2. frida-ps -aiH 192.168.x.x #find the target’s application identified ex: com.company.myapp
    3. download file bypass.js into current directory
    4. frida -H 192.168.x.x -f com.company.myapp -l bypass.js –no-pause
  6. burpsuite should now see plain text requests coming in

Leave a Reply

Your email address will not be published. Required fields are marked *