One, Fiddler download and install
Fiddler is a packet capture artifact that allows requests sent by all applications on computers, mobile phones, and tablets to be sent to the server through Fiddler first. The response returned by the server is first sent through Fiddler and then returned to the application, which is equivalent to a mailer.
Fiddler official website to download or Baidu Cloud (extraction code: i8ex)
You need to register an account on the Internet in order to use it, you can go to the Internet to find other cracked versions to install.
1. Live Traffic is a grab switch. After it is turned on, all requests from the computer will pass through the Fiddler proxy, and Fiddler will start to record and grab all the requests. Turning off Live Traffic or turning off the Fiddler software will exit the Fiddler proxy.
2. Check Capture HTTPS trafficc and restart to capture https requests.
3. The default port is 8866, which can be modified by yourself. Only by checking Allow remote computers to connect can you grab packages from other devices on the phone.
2. Download Night God Simulator
Question: Why download the night god simulator+xposed+justTrustMe?
Answer : Because the mobile phone Android system above 7.0 now divides the certificates into system certificates and user certificates. The app only trusts the system certificate by default, so if you do not use the emulator +xposed+justTrustMe and use a real mobile phone to capture the package, some software will prompt that there is no Internet (such as Douyin).
Take Xiaomi mobile phone as an example, you can see the system certificate and user certificate in the mobile phone settings -> password and security -> system security -> encryption and credentials -> trusted credentials:
So use the simulator to simulate a low version of the Android system, and the installation of xposed below requires root privileges, the phone will become bricked if it is not, so the simulator is more assured.
Another thing to note is that if you use the emulator to log in to Douyin, the first time may be no problem. The second time there will be problems such as empty recommendation and unable to browse the video, because the positioning may change too fast when logging in with the emulator. As a result, Douyin bans ip. If you log out and log in again, it will show frequent operations.
1. Download and install the simulator
Ye God Simulated Organ Network Download
2. Open the Yeshen multi-open device after installation
3. Choose Android 5.0
Install xposed
Xposed framework is a framework service that can affect the operation of the program (modify the system) without modifying the APK. Based on it, many powerful modules can be made and operate at the same time without conflicting functions.
Baidu Cloud (Extraction code: 2lx9)
Drag the software to the mobile phone simulator above and install it. After installation, click to download the xposed framework as shown in the figure:
Click to install and wait for the restart, during which you will be prompted to require root permissions.
Install justTrustMe
Download URL or Baidu Cloud (extraction code: 6j3e)
Drag the software to the mobile phone simulator above and install it.
Night God Simulator Network Configuration
1. First check the computer ip, you can use the command line ipconfig to check or click the network icon in the lower right corner of the packet capture software Fiddler to check
2. Find the WLAN network settings in the emulator settings, and press and hold the left mouse button to select modify the network
3. Proxy select manual, enter Computer ip ( must ensure that the emulator and computer are on the same network to capture the packet ) and the port number in the settings of the packet capture software Fiddler.
4. Start the computer Fiddler, open the Live Traffic grab switch, and then open the browser of the simulator to http://your computer ip:Fiddler port number.
For example, mine is: http://192.168.137.1:8866
Then click FiddlerRoot certificate to download the Fiddler certificate.
Open the certificate after downloading, and then you can rename the certificate, and then you may be required to set a lock screen password, and then the certificate is installed successfully.
Next, run the software in the simulator, such as Douyin, and you can grab the package in Fiddler.
Take Douyin as an example:
The Tik Tok app was actually called A.me at first, which means Awesome Me in English, and later changed its name to Tik Tok. The caught request aweme starts with a Douyin request.
Note:
Because of the certificate or maybe because of the anti-grabbing reason of Douyin itself, it is fine to use the emulator to log in and watch the video capture for the first time, but it will not work after two days or the second time you open the emulator.
Solution:
Delete the configured emulator and reconfigure one from the beginning according to this tutorial.
About Douyin's packet capture analysis and video batch download, you can check my other article:
Some analysis about Douyin packet capture and batch download of Douyin videos
Reference:
[Crack app capture restrictions] Xposed+JustTrustMe turns off SSL certificate verification!
Fiddler packet capture tool summarizes
fiddler configuration and usage tutorials,
remember the frustration of using fiddler to capture packets, Douyin,
how to crack the App network proxy, and the network is unavailable.
Use fiddler to achieve mobile phone packet capture