Comments (7)
Hi,
so I looked at the apps mentioned with friTap. One app has "anti-root" checks applied and therefore could not be started at all. Furthermore, both apps start their TLS communication via a forked process and therefore friTap has to be started with the parameter --enable_spawn_gating
.
Regarding LineageOS please make a new issue because the underlying TLS library could be something different. At least we never tested friTap on LineageOS.
Just to clarify:
--full_capture
means full packet capture with tcpdump therefore no plaintext pcap. To decrypt it the keys from-k <keylog>
can be used-p <pcap>
means we will only get a plaintext pcap with the plaintext data from the identified TLS traffic.- sometimes
-p <pcap>
feature won't work but you are still able to log the used keys with-k <keys>
which is using the same hooks as theuniversalkeylogger
-tool and much more.
Depending on the app it still works on Android 13 although there are some apps where it doesn't work on Android.
So it actually depends on the used app and its used TLS library :-)
Because we were able to log the network traffic with the mentioned apps we will close this issue. If you still encounter the same problem feel free to reopen it.
from fritap.
Hi,
thx for reporting this issue. Is it possible to share the target APK in order to reproduce the error in our dev environment?
from fritap.
I have tried 4-5 different apps and none of them worked. Here is the one com.telenor.pakistan.mytelenor
PlayStore link
2nd One
io.maqsad
from fritap.
@dev7machine which android version are you testing these apps on?
from fritap.
I have the same issue.
I have Android 12 (MIUI 13.5) (arm64)
Frida version 16.0.19 latest.
My client is a debian 11.
I'm testing telegram, I have the same issue on other apps.
./friTap.py -m -s --pcap test.pcap org.telegram.messenger
Start logging
spawning org.telegram.messenger
Press Ctrl+C to stop logging.
/home/user/friTap/friTap/_ssl_log.js
[*] Running Script on Android
[*] libssl.so found & will be hooked on Android!
[*] Android dynamic loader hooked.
Init watcher
INITIALIZED
/home/user/friTap
[*] Logging TLS plaintext as pcap to test.pcap
^C
Thx for using friTap
Have a nice day
ls -l test.pcap
-rw-r--r-- 1 user user 24 apr 29 08:39 test.pcap
pcap file is only 24 byte, is empty no packets
from fritap.
I tested on Android 9 x86 and works, I tested on Android 11 arm64 LineageOS 19.1 and doesn't work.
Always the same version of frida and the same client.
from fritap.
I tried with Google Play Store on Android 11 (arm64 emulator) with similar results. tcpdump captures packets fine, and using this, for example, captures (some) keys:
frida -U --codeshare vadim-a-yegorov/universalkeylogger -f com.android.vending
from fritap.
Related Issues (20)
- FriTap on Android 13 does not work? HOT 2
- Conscrypt hooking on Android 13 generates segfault HOT 3
- Overwrites existing Frida install HOT 1
- No packets captured HOT 3
- error after start importlib_resources HOT 2
- Error loading ProviderInstallerImpl HOT 4
- Flutter support HOT 1
- Cannot log the keys from an app on android device, Galaxy A54 5G HOT 5
- Should this handle packaged Chromium too? HOT 5
- Various unity apps don't work (Android) HOT 1
- ε ³δΊη³»η» HOT 3
- Issues with Nox emulator HOT 4
- remove empty .gitmodules file HOT 1
- Unable to log TLS keys or traffic with an android app HOT 7
- tcpdump starts twice on Android when app spawn and full capture are enabled HOT 1
- TLS keys and decrypted QUIC|HTTP/3 packets extraction with Cronet library HOT 5
- Allow startup script before logging
- Issue with friTap v1.1.0.5 - Error in hooking ProviderInstallerImpl HOT 4
- Only supporting IPv4/6 Error HOT 6
- Python 3.12 not supported because of 'distutils' removal HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fritap.