qera
Crash Log Analyst
LEVEL 1
400 XP
requirements to have installed an emulator recommended Nox player, a Sniffer as fiddler and also install python its latest version
You have to have python installed I recommend the latest version
now we need to install frida for that we simply open the cmd and put this command and it will be installed if it asks you to update do it
pip install frida-tools
now you need to have an emulator installed I recommend nox player have the emulator rooted search youtube how to do it later to see the packages that the emulator is capturing the packages you put this command
frida-ps -U
now we will install objection, you put this command and let it install
pip3 install objection
Now, if we go that far, everything is fine :) Now we need to have a Sniffer installed. I use Fiddler to configure it. It's easy as I show in the screenshots.
We already have fiddler configured to capture http and https in the emulator now we will have to see if that is true, we open the emulator and put this address in the browser:
If an error appears on the page then we will have to configure the ip that the Fiddler has, you can also open cmd and type ipconfig and there you see your ip.
once we know our ip we will have to put it in the emulator manually you go to wifi configuration you give it to modify wifi and put manual and now you paste your ip, in the proxy port you must know if it is 8888 0 8080 how do you know that you go to fiddler and look where it says connections in my case it is 8888 that I am going to put it in the proxy port and I click on save now I paste the previous address again which is this http://ipv4 .fiddler:8888/ it depends if it is 8080 just change it to the most recent numbers now paste it in the browser and it should show you something like download certificate something like that download it and install it ask for a name put any name and also ask for pin put what you remember and the fiddler certificate is already installed
ready now we open the location of the emulator file and look for something from adb.exe
we give it clip and above in the box we write powershell we give it enter and it will open
To see that it recognizes all the emulator devices, paste this command in powershell and you will get a list of devices.
.\adb.exe devices
now to know the architecture of your android you paste this command in my case it is for x86
.\adb.exe shell getprop ro.product.cpu.abi
Now we will have to download the file from the frida server below will be the link, it depends on the architecture of your android, since mine is x86, I am going to download that file
It will come out in winrar format, unzip it and it will leave you a blank file that you have to paste into the emulator folder,
ready now we will have to copy the name of that file, right click and copy
we will have to paste it in these commands I will leave it below only where it says frida server name paste it there and replace it as it is in the screenshots
.\adb.exe push frida-server-16.1.3-android-x86 “/data/local/tmp”
.\adb.exe shell “chmod 755 /data/local/tmp/frida-server-name”
.\adb.exe shell “/data/local/tmp/frida-server-name”
now paste all those commands in powerchell with the name you replaced from the frida server file, at the end if it keeps flashing it shows nothing because everything is fine.
now to capture an android api in my case I will do it with disney we open the application from there we execute cmd as administrator and we write again this command frida-ps -U
and we will get a list of packages again and we look for the application, as I show in the screenshots, we copy and paste it inside the quotes or where it says package name in this command
objection --gadget “Disney+” explore
and finally to skip the SSLPINING Bypass we paste this command
android sslpinning disable
and now we go back to fiddler and we configure all the ip and stuff, we are going to capture an android api, for that we open any in my case I will use disney with fiddler open anyway we log in with a fake account in the application and we see that we are respond with the login and that's it we have already captured an android api from scratch
You have to have python installed I recommend the latest version
Loading…
prnt.sc
pip install frida-tools
Loading…
prnt.sc
frida-ps -U
Loading…
prnt.sc
pip3 install objection
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
ipv4.fiddler
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
.\adb.exe devices
Loading…
prnt.sc
.\adb.exe shell getprop ro.product.cpu.abi
Loading…
prnt.sc
You must upgrade your account or reply in the thread to view hidden text.
Loading…
prnt.sc
ready now we will have to copy the name of that file, right click and copy
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
.\adb.exe shell “chmod 755 /data/local/tmp/frida-server-name”
.\adb.exe shell “/data/local/tmp/frida-server-name”
now paste all those commands in powerchell with the name you replaced from the frida server file, at the end if it keeps flashing it shows nothing because everything is fine.
Loading…
prnt.sc
and we will get a list of packages again and we look for the application, as I show in the screenshots, we copy and paste it inside the quotes or where it says package name in this command
objection --gadget “Disney+” explore
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc
android sslpinning disable
Loading…
prnt.sc
Loading…
prnt.sc
Loading…
prnt.sc