Comments (3)
Hi,
thx for your interest in friTap. Unfortunately, I can't read your language. Please ask your question in English and I will try to answer it.
All the best
from fritap.
I think this project is very useful for analyzing traffic. I have initially reproduced the project on Ubuntu and captured the traffic of several Android applications. I have a few questions that I would like to ask:
- After importing the secret key, it is true that there is a lot of http traffic in the traffic, but for most Chinese application software that I have analyzed, I can't actually see many useful operations in the decrypted traffic, such as what operations the user has performed. The specific plain text of the response body; what I see more is the acquisition of various resources in the request body, as well as the various device parameters of the response body and other irrelevant data, and then some hexadecimal bytes; I I would like to ask if you have analyzed the decrypted traffic packets? Is it consistent with my analysis? How can I improve this?
- I read the project introduction and said that it can analyze Android and iOS applications. I want to know whether it can also be decrypted normally for mobile phones with Hongmeng operating system. Because I don’t have a Hongmeng mobile phone at hand, I haven’t tried it yet; compared with the Chinese market, Hongmeng system It also occupies a large part of the market;
- Regarding improvements: My understanding of this project is to hook up the secret key for the ssl-read-write function. Can I add more ssl functions? Will this decrypt more content? Of course, this is just my preliminary opinion. idea;
thx!
from fritap.
Hi,
first of all thx for your interest in this project :)
Regarding your questions:
-
Well it always depends on the analyzed application. There might be several reasons for your results. In such cases it might be useful to do a full packet capture and for instance just try to decrypt the TLS streams inside this. Using the
-k <keylog_file>
you are able to get the keys with friTap. -
Without ever analyzing or working with the Hongmeng operating system we are not able answer that question. So it depends if they are still using the SSL libraries as a normal Android operating system or not.
-
Sure if you add more SSL/TLS libraries it is very likely that friTap is able to provide a decrypted PCAP where it wasn't able in the past. The secrect key extraction differs on each SSL library. Therefore it might be the SSL-read/write function or another one.
from fritap.
Related Issues (20)
- FriTap on Android 13 does not work? HOT 2
- Conscrypt hooking on Android 13 generates segfault HOT 3
- Overwrites existing Frida install HOT 1
- No packets captured HOT 3
- error after start importlib_resources HOT 2
- Error loading ProviderInstallerImpl HOT 4
- Flutter support HOT 1
- Cannot log the keys from an app on android device, Galaxy A54 5G HOT 5
- Should this handle packaged Chromium too? HOT 5
- Various unity apps don't work (Android) HOT 1
- Issues with Nox emulator HOT 4
- remove empty .gitmodules file HOT 1
- Unable to log TLS keys or traffic with an android app HOT 7
- tcpdump starts twice on Android when app spawn and full capture are enabled HOT 1
- TLS keys and decrypted QUIC|HTTP/3 packets extraction with Cronet library HOT 5
- Allow startup script before logging
- Issue with friTap v1.1.0.5 - Error in hooking ProviderInstallerImpl HOT 4
- Only supporting IPv4/6 Error HOT 6
- Python 3.12 not supported because of 'distutils' removal HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fritap.