search

fkie-cad / friTap

The goal of this project is to help researchers to analyze traffic encapsulated in SSL or TLS.
GNU General Public License v3.0
253 stars 26 forks source link

Cannot log the keys from an app on android device, Galaxy A54 5G #15

Open tomy1989 opened 9 months ago

tomy1989 commented 9 months ago

I am trying to use the friTap.py tool for monitoring SSL/TLS traffic on my Android device. I've executed the script with the following command:

./friTap.py -m -k keys.log -v -s com.google.android.youtube

Upon running the script, I observed the following output:

Start logging
Press Ctrl+C to stop logging
spawning com.google.android.youtube
[*] Running Script on Android
[*] libssl.so found & will be hooked on Android!
[*] Android dynamic loader hooked.
[*] Logging keylog file to keys.log
[*] Blocking provider registration of Ssl_Guard

However, I am facing two main issues:

  1. No Logging: Even though the script indicates that logging has started, I am not seeing any entries in the keys.log file.
  2. Blocking Ssl_Guard: The output mentions "Blocking provider registration of Ssl_Guard," but there is no additional information or log entries related to this action.

Could you please assist me in understanding what might be going wrong, and how to resolve these issues?

monkeywave commented 9 months ago

Hi,

thx for opening this issue. In order to reproduce the error we have some further questions.

tomy1989 commented 9 months ago

image using galaxy a54 5g with android version 13 device rooted using magisk app version: 18.38.37

Myshtea commented 9 months ago

I have the same problem on an emulator "rooted" through magisk so I can confirm that this happens. Same outputs as @tomy1989 Mine is configured like this : Name: PIXEL6_31_PLAYSTORE Device: pixel_6 (Google) Target: Google Play (Google Inc.) Based on: Android 12.0 ("S") Tag/ABI: google_apis_playstore/x86_64 Sdcard: 512 MB

tomy1989 commented 8 months ago

is there any update on this? :(

monkeywave commented 7 months ago

I'm still not sure where this problem is coming from. Does this only happen when running the Youtube app or also with other apps?

Furthermore ow does your output looks like when enabling spawn gating: python3 ./friTap.py -m -k keys.log -v -do --enable_spawn_gating -s com.google.android.youtube

In my case frida gets a timeout.