demand
When Android APP safety test, the main work is divided into:
- APK security
- Business Security
APK security is not discussed here, I talk about operational security, because most of the business logic or check on Servier end, this will involve a communications network. So the network packet capture is the fundamental test, will generally APP HTTP protocol, Websocket, Socket protocol. Where most of the HTTP protocol, Websocket is a rising star, at least Socket. For HTTP and Websocket, Burp Suite is the best election conducted capture.
Proxy settings
First set up the Agent, setting Android end;
Burp Suite Agent settings
Modifying agent monitor, select this specific address (Specific address). Note that, Android ends have to be modified to the IP.
Android side settings
Find the network, and then modify the network,
Save changes to OK.
Discovery certificate problems
When accessing https sites similar https://m.baidu.com/ this will give an error. Internet companies now also use https basic services to prevent the middleman attack. Find and solve problems, then the following describes how to install the certificate, and in fact, Firefox browser installed certificate is the same principle, but Android is somewhat different in the details step Here are the steps.
Export the certificate cacert.cer
The default is to export cacert.der
Write your own name on file
Tip export success.
Export path to see if the file exists.
Transmitting to the terminal Android
Transfer to Android There are several ways, then I used to use QQ transmission, later found to have adb tool, found too convenient, but also specify the path, usually into the SD card (externally accessible path) can be.
adb push D:\cacert.cer /sdcard/
D:\cacert.cer: 1 file pushed. 0.2 MB/s (973 bytes in 0.004s) // 提示只用了0.004秒 就传输好了,比QQ牛逼一百倍;
Use Android comes with tools to view the file:
Android installed CA certificate
Set up inside the security search,
Choose your path
Test HTTPS
After installing the CA certificate, visit and see what HTTPS
Ethereal success.