代理的 IOS 应用程序不发送 http/s 请求? 那么他们如何获取数据呢?
[英]Proxied IOS App doesn't send http/s requests? How are they fetching the data then?
问题描述
I'm currently trying to intercept API calls of an IOS App.
我目前正在尝试拦截 IOS 应用程序的 API 调用。 Why?为什么? I want to reverse engineer their private API and use it for more specific requests.我想对他们的私有 API 进行逆向工程,并将其用于更具体的请求。 However, the App has nearly zero https traffic and traffic via web sockets.但是,该应用程序的https流量和通过 Web 套接字的流量几乎为零。 The only requests they have sent during the start of the app were on to:他们在应用程序启动期间发送的唯一请求是:
- Mapbox (probably to display maps) Mapbox(可能显示地图)
- and Google to request a
fcmtokenfor Cloud Messaging和 Google 为 Cloud Messaging 请求fcmtoken
Thus, I was wondering how they fetch the data displaying in the app.因此,我想知道他们如何获取应用程序中显示的数据。
1 个解决方案
解决方案1
0 已采纳 2022-05-18 14:04:30
After some more deep research and reverse engineering the android app, I noticed that the app uses flutter.经过一些更深入的研究和对 android 应用程序进行逆向工程后,我注意到该应用程序使用了颤振。 The problem with that is that Flutter uses Dart and Dart is not proxy aware and uses its own certificate store.问题在于 Flutter 使用 Dart,而 Dart 不支持代理并使用自己的证书存储。 Hence, the application doesn't take any proxy settings from the system and sends data directly to the server.因此,应用程序不会从系统中获取任何代理设置,而是直接将数据发送到服务器。 Thus, I wasn't able to intercept the request using Burpsuite.因此,我无法使用 Burpsuite 拦截请求。
I was able to intercept the firebase and mapbox requests as they were imported as nodejs packages.我能够拦截作为 nodejs 包导入的 firebase 和 mapbox 请求。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.