PCAPdroid
mitmproxy
PCAPdroid | mitmproxy | |
---|---|---|
16 | 152 | |
1,913 | 34,408 | |
- | 1.0% | |
9.0 | 9.4 | |
2 days ago | 3 days ago | |
Java | Python | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
PCAPdroid
-
⟳ 0 apps added, 41 updated at f-droid.org
PCAPdroid (version 1.6.9): No-root network monitor and traffic dump tool for Android devices
-
⟳ 0 apps added, 11 updated at apt.izzysoft.de
PCAPdroid mitm (version 16): Mitm addon for PCAPdroid
-
Need an app that sniffs HTTP/HTTPS requests that are made by apps
https://github.com/emanuele-f/PCAPdroid is very good, shows content too (for http)
-
Scraping data from an app: real world example
There's also PCAPdroid [1] which you can run straight from your phone with no root. Works with https traffic too when you enable the mitm setting.
[1]: https://github.com/emanuele-f/PCAPdroid
-
Downloading file using HTTP Request GET or PUT results in an empty file
Also whenever I mess around with http stuff I like to use tools like Fiddler Classic (PC) and PCAPdroid (Android) to know what I need to do vs. what I'm sending/requesting. With this you can perform the desired action manually while capturing all the packets of that action with headers. Then when you replicate the functionality, you capture the packets again and compare both to verify that your code behaves identically/similarly to what you manually did.
-
Found unknown app using data on my phone by using the glass wire app.
Try PCAPdroid. It'll show the app as well as the destination IP.
-
⟳ 8 apps added, 86 updated at f-droid.org
PCAPdroid (version 1.5.1): No-root network monitor and traffic dump tool for Android devices
-
Questions about Android version updates and security update support for Xiaomi
I'm rather fond of PCAPdroid, just leave everything to default and start monitoring. Ideally you should only see ~100b be sent via netd and nothing else if you are not using your phone (and disabled background update checks in say NetGuard, Firefox, etc.). It takes up the VPN slot so be aware of that.
- PCAPdroid: no-root Android app to monitor, inspect and block the connections made by the other apps in the device. It can now inspect HTTP and decrypt TLS directly from the app
-
LOTS of activity on wifes phone between midnight and waking hours
PCAPdroid should do the same thing
mitmproxy
- Ask HN: Fiddler Alternatives
- Bruno
-
AirBnb Wifi Safety Precaution needed?
This statement gives a false sense of security. You can use a transparent proxy, like mitmproxy, to view HTTPS traffic - https://mitmproxy.org/. https://reedmideke.github.io/networking/2021/01/04/mitmproxy-openwrt.html
-
WORKING tutorial on how to enable iOS voice chat RIGHT NOW
You'll need to install mitmproxy and set it up on your computer and iOS. I won't go into too much detail here on how to do this, but there are plenty of guides available. This is a pretty good one: https://nadav.ca/2021/02/26/inspecting-an-iphone-s-https-traffic/
-
mitmproxy VS petep - a user suggested alternative
2 projects | 3 Oct 2023
-
Upside-Down-Ternet (2006)
TIL this goes back to 2006, how cool! We nowadays have a much simpler version as a mitmproxy example: https://github.com/mitmproxy/mitmproxy/blob/main/examples/ad.... Although it obviously does not work as well anymore with everything being HTTPS nowadays (unless you trust the cert of course). :)
-
Ask Dang: What Has Happened with HN's HTTPS Recently?
Perhaps you could have your device use a proxy that can do the HTTPS unwrap for you? https://mitmproxy.org/ maybe?
-
How to implement SSL/TLS pinning in Node.js
A great way to test the effectiveness of a pinning implementation is by simulating an MITM attack. Tools like Mitmproxy or Wireshack allow us to create a test environment to monitor, intercept, and proxy network requests for a test host.
- Evading JavaScript Anti-Debugging Techniques
- Compatibility with Newer Versions of Cryptography
What are some alternatives?
termux-app - Termux - a terminal emulator application for Android OS extendible by variety of packages.
Wireshark - Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. ⚠️ GitHub won't let us disable pull requests. ⚠️ THEY WILL BE IGNORED HERE ⚠️ Upload them at GitLab instead.
FoxMagiskModuleManager - A module manager for Magisk because the official app dropped support for it
Shadowrocket-ADBlock-Rules - 提供多款 Shadowrocket 规则,带广告过滤功能。用于 iOS 未越狱设备选择性地自动翻墙。
driftnet - Driftnet watches network traffic, and picks out and displays JPEG and GIF images for display
bettercap - The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
scrambled-exif
sslstrip - A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.
duckduckgo-privacy-extension - DuckDuckGo Privacy Essentials browser extension for Firefox, Chrome.
IOXY - MQTT intercepting proxy
DeepLAndroid - Unofficial Android App for DeepL Translator
ZAP - The ZAP core project