Comments (3)
Thx for reporting this issue, we'll have a look into this.
Regarding your question if friTap is somewhere rewriting packets when running in full packet capture mode (-f
). This should normally not the case, because in full packet capture mode tcpdump is used to to do the capture. During runtime all sockets of the target application are traced from friTap. Finally when the capture stops the created PCAP is filtered, in a way that only the application traffic remains in the PCAP. Therefore no rewriting should happen, but maybe there is some sort of logic bug.
The hooks for the plaintext traffic are still applied when friTap is running in full capture mode but not evaluated. Therefore it might be the case that this traffic is also inside the PCAP although this should be filtered away due to the traced sockets.
Internally friTap is invoking precompiled tcpdump binaries from here. Is the tcpdump error still present if you invoke tcpdump directly?
# tcpdump -i any -s 0 -w test_capture.pcap
Which tcpdump version are you invoking? Maybe there is a new release from tcpdump which could resolve this issue.
Regarding your last question. When doing a socket trace -sot
its up to the user to do the PCAP capture and friTap is only responsible for tracing the network traffic of the target application and creates from that a Wireshark display filter.
from fritap.
Hi, I tested the latest version of friTap and the issue still persist. Or could it be due to the type of OS and the Device I'm using for testing?
from fritap.
There we actually some bugs in the --full_capture
logic. Should be solved in the latest release. If not just reopen it and we will look into this. If possible, than provide us the used app and Android version so we able to reproduce this issue :-)
from fritap.
Related Issues (20)
- FriTap on Android 13 does not work? HOT 2
- Conscrypt hooking on Android 13 generates segfault HOT 3
- Overwrites existing Frida install HOT 1
- No packets captured HOT 3
- error after start importlib_resources HOT 2
- Error loading ProviderInstallerImpl HOT 3
- Flutter support HOT 1
- Cannot log the keys from an app on android device, Galaxy A54 5G HOT 5
- Should this handle packaged Chromium too? HOT 5
- Various unity apps don't work (Android) HOT 1
- ε ³δΊη³»η» HOT 3
- Issues with Nox emulator HOT 4
- remove empty .gitmodules file HOT 1
- Unable to log TLS keys or traffic with an android app HOT 5
- tcpdump starts twice on Android when app spawn and full capture are enabled HOT 1
- TLS keys and decrypted QUIC|HTTP/3 packets extraction with Cronet library HOT 3
- Allow startup script before logging
- Issue with friTap v1.1.0.5 - Error in hooking ProviderInstallerImpl HOT 3
- Only supporting IPv4/6 Error HOT 5
- Python 3.12 not supported because of 'distutils' removal HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fritap.