fly-studio
commented
3 years ago It's ask a domain with DNS, not HTTP request, This capture can sniff all HTTP/1.1 request/response. BUT, no HTTPs No One can sniff the HTTPs URL/Body, google used HTTPs and HTTP/2 Of course, you can use a man-in-the-middle attack:
- create a CA and trusted in your device
- build a https server in android, and it can self-sign any domain cert with the CA
- redirect the https from VPN request body to your https server
- request a https request to real remote server, eg: okhttp
- answer VPN with the okhttp's response
mrbluecoat
I want to create an application that filters the http url requested by another browser application using your application. But i was only able to get a partial url via DNS log. Ex) org.fly.android.localvpn I/System.out: DNS: -- 223.5.5.5:53:25224 play.google.com-A
How can I get the full URL requested by another browser application?