$30 off During Our Annual Pro Sale. View Details »

Android開発でmitmproxyを使った話

bigbackboom
December 18, 2018
2
1.1k

 Android開発でmitmproxyを使った話

bigbackboom

December 18, 2018
Tweet

More Decks by bigbackboom

See All by bigbackboom
Android Architecture Componentの Navigationで少しはまった話
bigbackboom
0
540
RecyclerViewでViewPagerっぽいの作ろうとして頓死した話
bigbackboom
0
1.3k

Featured

See All Featured
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
52
19k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
10
1.2k
We Have a Design System, Now What?
morganepeng
41
6.4k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
24
2k
The World Runs on Bad Software
bkeepers
PRO
59
6.1k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
50
31k
5 minutes of I Can Smell Your CMS
philhawksworth
199
19k
Embracing the Ebb and Flow
colly
77
3.8k
What's in a price? How to price your products and services
michaelherold
236
10k
Product Roadmaps are Hard
iamctodd
43
9k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
15
1.6k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
185
15k

Transcript

  1. Android։ൃͰ
    mitmproxyΛ࢖ͬͨ࿩

    View Slide

  2. Who am I?
    — ٠஑/bigbackboom
    — גࣜձࣾΞΠελΠϧɹ
    ϝσΟΞ։ൃ౷ׅ෦
    ΞϓϦάϧʔϓ
    — ͳΜͪΌͬͯAndroid։ൃऀ
    — ࠷ۙαʔόʔαΠυ
    Golangʹුؾத
    — ҟ໊ɿ͓٠ɺ٠๥ɺ٠͞Μ

    View Slide

  3. ܦҢ
    — responseͷ஋Λॻ͖׵͑ͯɺຊ൪؀ڥͰΞϓϦͷڧ੍Ξο
    ϓσʔτͷςετ͕͍ͨ͠ɻ
    — iOS͸CharlesΛ࢖͑͹Ͱ͖Δ͕ɺAndroid͸ʁ
    — CharlesͰ͍͚Δ͸͚ͣͩͲɺͳΜ͔httpsΩϟονͰ͖ͳ
    ͍Αɾɾɾ(´ŋωŋ`)
    — Charles͕ͩΊͳΒଞͷΞϓϦέʔγϣϯ୳ͯ͠ΈΑ͏ʂ

    View Slide

  4. mitmproxy
    — Charlesͱ΄΅ಉ౳ͷػೳΛఏڙ͢ΔOSS
    — UI͸ίϚϯυϕʔε
    — WebUIʢβʣ·Ͱ͋Δʂ

    View Slide

  5. ݒ೦఺
    — ਖ਼௚ίϚϯυϥΠϯϕʔε͕ɾɾɾͬͨΔ͍

    View Slide

  6. ͱ͸͍͑ɾɾɾଞʹํ๏΋ͳ͍

    View Slide

  7. ͱΓ͋͑ͣ΍ͬͯݟΔ΂͖

    View Slide

  8. Πϯετʔϧ
    $ brew install mitmproxy

    View Slide

  9. ىಈ
    $ mitmproxy -p ϙʔτ൪߸

    View Slide

  10. ΞϓϦͷ४උ
    1. pcͷipΞυϨεΛϝϞ
    2. Android୺຤Λ༻ҙͯ͠ɺઃఆʼWi-Fiͱը໘ΛભҠ
    3. ઀ଓࡁΈͷwifiΛ௕ԡ͢͠Δͱɺ"ωοτϫʔΫΛมߋ"ͷ߲໨͕ग़ΔͷͰλοϓ͢Δ
    4. දࣔ͞Εͨ΢Οϯυ΢ͷ”ৄࡉઃఆ߲໨"ͷϓϩΩγ߲໨Λखಈʹมߋ͢Δ
    5. ௥Ճදࣔ͞Ε߲ͨ໨ͷ”ϓϩΩγͷϗετ໊”ʹᶃͷipΞυϨεΛೖྗ͢Δ
    6. ”ϓϩΩγϙʔτʹ͸”mitmproxyىಈ࣌ʹ࢖༻ͨ͠ϙʔτ൪߸Λೖྗ
    7. อଘϘλϯΛλοϓ͢Δ(*1)
    8. ϒϥ΢βΛ։͖ɺ"mitm.it"ΛΞυϨεʹೖྗ͢Δ(࣍ϖʔδը૾ࢀর)
    9. ։͍ͨϖʔδͷAndroidϩΰͷϘλϯΛԡͯ͠ɺূ໌ॻΛμ΢ϯϩʔυɾΠϯετʔϧ͢Δ

    View Slide

  11. View Slide

  12. ͦͯ͠ɾɾɾಈ͔ͯ͠ΈΔ

    View Slide

  13. Https͕औΕ͍ͯͳ͍ͩͱʁ

    View Slide

  14. ͦͯ͜͠ͷ ৘ใ Λݟ͚ͭΔ
    "ࣗ෼ͷΞϓϦͰड͚෇͚ΔΑ͏ʹ͢Δʹ͸ωοτϫʔΫɾη
    ΩϡϦςΟͷઃఆΛΞϓϦʹ௥Ճ͢Δඞཁ͕͋ΔΑ͏Ͱ͢ɻ"

    View Slide

  15. View Slide

  16. ΍ͬͯΈΑ͏
    — app/src/main/res/xmlʹnetwork_security_config.xml
    Λ࡞੒ɻҎԼͷ಺༰Λهड़ɻ









    View Slide

  17. — AndroidManifest.xmlʹҎԼΛ௥ه
    android:networkSecurityConfig="@xml/network_security_config"
    >
    ...

    View Slide

  18. τϥΠΞήΠϯ

    View Slide

  19. View Slide

  20. ࣮͸ɾɾɾcharlesͰ΋͍͚ͨ
    Android7͔ΒcharlesͰssl௨৴͕ݟΕͳ͘ͳͬͨ݅

    View Slide

  21. ·ͱΊ
    — charlesͷଞʹແྉͷmitmproxy͕͋Δ
    — ࢖͍উख͸ݴ͏΄Ͳѱ͘ͳ͍
    — Android 7Ҏ্͔Β໌ࣔతʹূ໌ॻͷڐՄΛϓϩδΣΫτ
    ʹઃఆ͢Δඞཁ͕͋Δ

    View Slide