堆栈内存溢出
  简体   繁体   English

无法在Android中配置Fiddler代理来解密HTTPS

[英]Cannot configure Fiddler proxy in Android to decrypt HTTPS

 原文  2018-01-29 20:09:21       android/ proxy/ fiddler

问题描述

I am trying to set up Fiddler proxy to capture traffic from a Xamarin app. 我正在尝试设置Fiddler代理来捕获来自Xamarin应用程序的流量。 I have completed the following steps: 我已完成以下步骤:

  1. Installed Fiddler v5.0.20173.50948 on a Windows machine 在Windows机器上安装Fiddler v5.0.20173.50948
  2. Set Allow remote computers to connect and port 8888 设置允许远程计算机连接和端口8888
  3. Set Capture HTTPS CONNECTs , Decrypt HTTPS traffic and ...from all processes , installed the root cert to Trusted Root Certification Authorities folder. 设置Capture HTTPS CONNECT解密HTTPS流量...从所有进程安装根证书到Trusted Root Certification Authorities文件夹。
  4. on Android device I'm using the same Wi-Fi network and configured manual Wi-Fi proxy with PC's ip and port 8888 在Android设备上我使用相同的Wi-Fi网络并配置手动Wi-Fi代理与PC的IP和端口8888
  5. I was able to open ipv4.fiddler:8888, downloaded the cert and installed it on the Android device, I can see it in Trusted credentials>User . 我能够打开ipv4.fiddler:8888,下载了证书并将其安装在Android设备上,我可以在Trusted credentials> User中看到它。 I compared the thumbprint on the PC cert and Android cert, they are the same. 我比较了PC证书和Android证书上的指纹,它们是相同的。

Fiddler is able to capture traffic from some websites, but for the URLs I care about I only see tunnel CONNECTs, but no decrypted traffic. Fiddler能够从一些网站捕获流量,但对于我关心的URL,我只看到隧道CONNECT,但没有解密流量。 fiddlerScreenshot fiddlerInspectorScreen

PS When these steps didn't work I also tried: PS当这些步骤不起作用时,我也尝试过:

  • resetting all certs in Fiddler and re-installing them on both PC and the Android device 重置Fiddler中的所有证书并在PC和Android设备上重新安装它们
  • installing the cert for VPN and apps as well as for Wi-Fi in Android 安装VPN和应用程序的证书以及Android中的Wi-Fi

That didn't help. 这没有用。

Any help is very appreciated. 非常感谢任何帮助。

1 个解决方案

解决方案1
 0  2018-09-24 05:35:02

maybe it is caused by some app using SSL pinning, you could try JustTrustMe or tool like http://repo.xposed.info/module/mobi.acpm.sslunpinning but first you should install a framework http://repo.xposed.info/module/de.robv.android.xposed.installer 也许它是由一些使用SSL固定的应用程序引起的,你可以试试JustTrustMe或像http://repo.xposed.info/module/mobi.acpm.sslunpinning这样的工具,但首先你应该安装一个框架http://repo.xposed。信息/模块/ de.robv.android.xposed.installer

Attention: it's better to do this in simulator since it may cause damage to your device 注意:最好在模拟器中执行此操作,因为它可能会对您的设备造成损害

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在Android上的FIddler上查看HTTPS - View HTTPS on FIddler on Android 如何在Windows上使用最新的Android模拟器配置像Fiddler2或Charles Web Proxy这样的HTTP代理? - How to configure an HTTP Proxy like Fiddler2 or Charles Web Proxy with the latest Android Emulator on Windows? Fiddler - 解密Android HttpsUrlConnection SSL流量 - Fiddler - Decrypt Android HttpsUrlConnection SSL traffic 不能将 Fiddler 代理与 Android 仿真器一起使用 - Can not use Fiddler proxy with Android Emulator Android 浏览器看不到 Fiddler 代理 - Android browser doesn't see Fiddler proxy Fiddler代理无法与Android Lollipop模拟器一起使用 - Fiddler Proxy Not Working with Android Lollipop Emulator 无法在 Android 上解密 AES? - Cannot Decrypt AES on Android? 查尔斯代理 + 安卓 HTTPS - Charles Proxy + Android HTTPS 为什么有些HTTPS请求无法在Fiddler上解密,而有些则有效? - Why would some HTTPS requests fail to decrypt on Fiddler, while some works ? 配置Fiddler以监控来自Android Emulator的HTTPS请求 - Configuring Fiddler to monitor HTTPS requests from Android Emulator
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM