Sniffing Android app's HTTPS traffic from Fiddler fails with only 'Tunnel To' entries in Fiddler
I am trying to capture HTTPS traffic from my rooted Android device (4.4.4) to analyze an undocumented protocol of an app. I've set up my Fiddler as a proxy and enabled HTTPS sniffing. I've installed the Fiddler's generated root certificate on my device. I've set up my proxy for my Wifi on my Android device.
When I run my browser and navigate to any HTTP or HTTPS site, Fiddler can capture traffic successfully.
When I run some apps (e.g. my own app which uses Parse as its backend), I can see all the HTTPS traffic to the servers, decrypted. So far so good.
When I try to run that particular app, I can't get Fiddler to capture its traffic. Here's all I get on Fiddler:
URLs are some IP addresses:SSL (:443).
I've also tried using ProxyDroid. Interestingly, I was able to capture the traffic once, saw a decrypted HTTPS connection to that app's servers, but after that, it never captured again. I know that the app uses HTTPS, and not an unknown/other protocol.
How can I capture HTTPS traffic successfully, and why would Fiddler once work for that app, and suddenly stop working?
It appears to be specific to that app. I was successfully able to sniff all the other apps. That particular app probably uses SSL pinning: it checks for certificate within itself and doesn't allow fake certificates even if it's trusted by the device.
- EventBus - Subscriber class and its super classes have no public methods with the @subscribe annotation
- Check for navigation bar
- How to manually set the FirebaseAuth User emailVerified status to true
- You can't submit updates as some information about your app is incomplete (Google Play)
- Android Ethernet and Wi-Fi at the same time
- How to create a Custom BottomNavigationAppBar in jetpack compose?
- How to capture app traffic on Android
- How to unzip, edit and zip an android apk
- Change password with Firebase for Android
- How to avoid reverse engineering of an APK file
- HTTPResponse debugging with the android emulator
- Using cookies with Android volley library
- Kotlin - Most idiomatic way to convert a List to a MutableList
- Gif image is not working in android in react native
- Flutter: Execution failed for task ':app:compileDebugKotlin'
- How to implement Container Transform with Material Motion on Jetpack Compose
- How to use Google Cloud Translation API in Android Studio?
- Retrofit always calling onFailure even response is 200
- Add intent extras in compose UI test
- How to set Google Vision QR Scanner to detect only one value?
- SignalR Client implementation in unity works in editor but not in Android
- Jetpack Compose Material3 Pull to Refresh functionality
- How can I align vertical center contents in Android Compose VerticalPager
- How can I achieve before-after animation in Jetpack Compose?
- Setting requestedOrientation results in crash
- Android Studio 3.1.3 - Unresolved reference: R - Kotlin
- Android Wrap Shell Script Doesn't Work as Expected
- I can't backup my realm database in External Directory because of mkdirs()
- At what point can I get the width of a view in a RecyclerView?
- Android-studio ERROR: Cannot add task 'copyDebugIconFonts' as a task with that name already exists