Record a case where charles cannot capture the app even after enabling vpn + banning ssl, because it is a flutter application

Mobile 2023-07-29 23:27:01 views: null

1. How to judge whether the flutter application app?

Open the app, runadb shell dumpsys activity top

insert image description here

The appearance of flutter here is the flutter application.

2. How to solve the problem of flutter application packet capture?

For the app developed by flutter, the ssl certificate verification is in the ssl_crypto_x509_session_verify_cert_chain function in libflutter.so, and frida can hook it to return true.

Open the ide search string ssl_server, double-click to find the offset address of the ssl_crypto_x509_session_verify_cert_chain function to hook;

insert image description here

The hook code is as follows

Guess you like

Origin blog.csdn.net/weixin_51111267/article/details/131709996

Record a case where charles cannot capture the app even after enabling vpn + banning ssl, because it is a flutter application

mac: completely solved - prompt after installing the app: "XXX" cannot be opened because the developer cannot be verified; it cannot be verified that this App does not contain malware

Mobile APP interface interception (packet capture)-Charles

After the installation of the Apache HTTP server, the report: Cannot start because the parallel configuration of the application is incorrect-(solved)

After learning this Charles package capture tutorial, I uninstalled fiddler directly

How to use mac Charles capture app on Android and Ios phone

[Charles] APP capture tool how to configure the phone proxy certificate

Charles - Night God simulator certificate installation App capture package

Comprehensive implementation case of enterprise internal network SSL VPN and IPSec VPN interoperability (with topo experimental configuration environment)

After gradle 3.0, after configuring outputFileName or outputDirectory, the error that I cannot install app-debug appears in the debug case.

After Charles is installed, the HTTPS request cannot be fetched, showing unknown

MAC uses Charles, after the proxy, some webpages cannot be opened

Packet capture tool Charles (2) - mobile APP capture (set up mobile phone proxy, install certificate)

Problem that files cannot be uploaded after enabling "server-side signature and direct transfer" of Alibaba Cloud OSS

Charles' HTTPS packet capture method and principle, download and install ssl/https certificate

Android 9 system Charles configures socket mode to capture https and move SSL certificate

DiscuzX3* UCenter application communication failure solution after enabling https

Charles ios phone capture

charles capture Finishing

Charles capture the use of tools (a)

Charles packet capture configuration

charles capture tutorial

Charles capture problem

android Reverse --- charles capture

Charles Andrews capture end

Use Charles to capture packets

Charles failed to capture https

Charles packet capture tutorial

Mobile https capture ---Charles

Recommended

TIOBE May list: Fortran “resurrected” into Top 10

GCC 14.1 released

Ranking

B. Little Girl and Game【1300 / 回文字符串博弈论】

CIKERS Shane 20190613

"Javascript advanced programming" study notes - the constructor and prototype

beeline hiveserver2 start

springboot - Automatically backup mysql data every day

Data Storage Full Solution--Detailed Persistence Technology

Detailed Explanation of Spring Web MVC DispatcherServlet—Official Original

TCP / IP protocol layers structure and function

Command type literal pos: unknown； Fallback type literal pos: unknown] with root cause

Design of multifunctional curtain controller with indoor anti-theft alarm

Daily

More

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)

2024-05-02(0)

2024-05-01(4)

2024-04-30(36)

2024-04-29(5)