Burpsuite proxy browser and App Interception

00:05:55
https://www.youtube.com/watch?v=0CIpMDJmPpc

Summary

TLDRThe video tutorial demonstrates using Burpsuite to intercept traffic from an Android phone connected to a Wi-Fi network. The presenter explains the setup process, including configuring proxy settings and installing certificates. Examples include capturing requests and responses from the McDonald's app and other applications like Gmail. The video highlights challenges with SSL certificates and differences in traffic handling between browsers and apps.

Takeaways

  • 📱 Intercept mobile app traffic using Burpsuite.
  • 🌐 Configure your device's proxy settings to capture traffic.
  • 🔑 Install Burpsuite certificate on your device to intercept HTTPS traffic.
  • ✉️ Forward captured requests for apps like Gmail to send emails.
  • 🍔 Analyze traffic from apps like McDonald's to see data exchanges.
  • ⚠️ Some apps may not work due to SSL certificate issues.
  • 📖 Detailed setup required for full traffic capture.
  • 🔍 Review HTTP history to analyze data sent and received.
  • ⚙️ Burpsuite must be correctly configured for your network settings.

Timeline

  • 00:00:00 - 00:05:55

    In this video, the presenter demonstrates how to intercept traffic from an Android phone using Burpsuite, a tool running on a laptop connected to the same Wi-Fi network. They start by enabling interception and opening the McDonald's app, revealing that data is sent to servers like Facebook and McDonald's. The presenter forwards the traffic allowing the app to update and shows the HTTP history which contains GET requests to McDonald's server regarding menu items like breakfast and Quarter Pounder nutrition information. They then visit a website using Chrome on the phone, which also allows capturing of traffic. The setup process in Burpsuite is explained, detailing the need to configure proxy settings and install a certificate on the phone for traffic capture. It is noted that while browsers handle this well, some apps may face issues due to SSL certificate validation. Lastly, an email is sent using the Gmail app, reiterating that interception and forwarding of traffic is essential for it to work.

Mind Map

Video Q&A

  • What is Burpsuite?

    Burpsuite is a tool used for web security testing that allows for intercepting and analyzing traffic.

  • How do I capture traffic on my phone using Burpsuite?

    You need to connect your phone to the same Wi-Fi network as your laptop running Burpsuite and configure the proxy settings with the correct IP address and port.

  • What do I need to install to capture HTTPS traffic?

    You need to install a Burpsuite certificate on your mobile device to intercept HTTPS traffic.

  • Can I intercept traffic from any app?

    Not all apps will work due to SSL certificate verification issues, which can vary by app and Android version.

  • How do I send requests while capturing traffic?

    You must forward the captured requests in Burpsuite for the application or browser to proceed with sending the data.

  • Is there a difference in capturing traffic from browsers versus apps?

    Yes, browsers generally work better for interception than some applications due to how they handle SSL.

View more video summaries

Get instant access to free YouTube video summaries powered by AI!
Subtitles
en
Auto Scroll:
  • 00:00:00
    Did you know that it's possible to intercept  traffic from a phone and see what your
  • 00:00:04
    applications are sending and receiving?  In this example I've got an Android phone
  • 00:00:08
    connected to my Wi-Fi network I've also got  this laptop connected to the network and on
  • 00:00:14
    the laptop I'm running Burpsuite which allows  me to intercept traffic sent by this phone on
  • 00:00:20
    the laptop I'm running Burpsuite so what I'll  do here is enable interception so intercept is
  • 00:00:26
    on on the phone I will open the McDonald's app  so that's now started and as you can see there
  • 00:00:33
    traffic is being intercepted we see traffic  going to Facebook which is interesting you can
  • 00:00:38
    see here's an example that traffic is being sent  to McDonald's.com we've got GraphQL execute JSON
  • 00:00:46
    Great Britain cuz I'm in England English language  it's sending information to McDonald's telling
  • 00:00:51
    it that I'm using an Android phone whole bunch  of information is sent nothing is happening on
  • 00:00:56
    the app at the moment because I haven't forwarded  this traffic to McDonald's so if I select all the
  • 00:01:03
    traffic and then click forward we should see  something happen on the app what I'll do is turn
  • 00:01:12
    off interception so that it's no longer stopping  traffic being sent and there you go the app has
  • 00:01:18
    updated we can see information about McDonald's  there if I go to HTTP history we can see that a
  • 00:01:24
    whole bunch of traffic was sent by the phone  if I go to dashboard as an example we can see
  • 00:01:31
    McDonald's here so notice there was a get request  to McDonald's and some information was sent
  • 00:01:35
    back so we can see information with regards to  breakfast whole bunch of information sent to the
  • 00:01:40
    phone what I'll do is go back to proxy and turn  interception on go to more nutrition information
  • 00:01:49
    let's have a look at burgers as an example  and let's have a look at a quarter pounder
  • 00:01:55
    information is being requested but nothing's  being sent at the moment because I'm capturing
  • 00:01:59
    it so I'll forward that information through we  can see quarter pounder with cheese here nutrition
  • 00:02:05
    information is shown there if I go back to HTTP  history notice here we told a quarter pounder
  • 00:02:13
    patty of 100% beef with two slices of cheese and  that's what we see right over here on the phone
  • 00:02:19
    so we are seeing the information being sent to  McDonald's on the left so request and then the
  • 00:02:25
    information sent back so under ingredients we  see this kind of information so ingredients we
  • 00:02:31
    can see 100% pure beef and then we've got wheat  flour here we can see the image that was loaded
  • 00:02:37
    etc if I ran a browser on the phone and I go to  a website let's say davidbombal.com we'll be able
  • 00:02:45
    to see that kind of information here as well so  notice https davidbombal.com the Android phone
  • 00:02:53
    using the Chrome web browser is requesting  information from the server and a bunch of
  • 00:02:59
    information is returned by the server saying David  Bombal start learning today and change your future
  • 00:03:05
    and that's what we see over here so Burpsuite  allows us to intercept traffic from a browser as
  • 00:03:10
    an example or an application now you do have to  do some setup for this to work in Burpsuite you
  • 00:03:16
    have to go to proxy settings and you have to add  the interface that you're going to capture traffic
  • 00:03:21
    from so in my example I used that IP address and  this port number 8080 and I clicked add and that
  • 00:03:28
    allowed me to capture traffic on the device so the  phone as an example under your network so as an
  • 00:03:34
    example your Wi-Fi network you have to configure  your proxy server IP address and port number so
  • 00:03:40
    that matches what I've got configured in Burpsuite  and that then allows me to capture the traffic now
  • 00:03:47
    another thing you'll have to do is browse to the  IP address of your Burpsuite server and the port
  • 00:03:52
    number in my example it's 192.168.0.247 port  8080 and you'll have to install the certificate
  • 00:04:01
    so you'll have to install it using for  instance the certificate installer and
  • 00:04:06
    install the certificate on your phone that will  then allow you to capture traffic i'm not going
  • 00:04:12
    to show the full process on how to install the  certificate that often depends on your phone
  • 00:04:17
    but if you browse to your Burpsuite IP address  and add it to your devices trust store that will
  • 00:04:24
    allow you to capture traffic so on the Burpsuite  website they tell you that you have to install
  • 00:04:30
    your certificates but they're not going to show  you this for every single phone because it really
  • 00:04:34
    depends on the version of Android you're using as  an example or which phone you're using but you've
  • 00:04:40
    got to install the certificate on your device so  have a look at the Burpuite documentation on how
  • 00:04:46
    to do that now I found that this works really  well for a browser it doesn't always work for
  • 00:04:50
    apps depends on the version of Android that  you're using i'll show you in a separate video
  • 00:04:54
    how to install the certificate in the root of the  Android phone because that's a separate process
  • 00:05:01
    what you'll find as an example is some apps will  not work because they will complain about the SSL
  • 00:05:07
    certificate the browser will work fine using a  very basic setup like this and some applications
  • 00:05:12
    like McDonald's will work fine other applications  will not work i'll turn intercept back on and
  • 00:05:18
    let's open another app let's say Gmail i'll send  an email to myself i'll make this test two email
  • 00:05:24
    and just say the message is test and I'll send  the email notice it says sending at the moment
  • 00:05:30
    it's not able to send it because I am capturing  all the traffic so I've got to forward all that
  • 00:05:37
    traffic to allow the email to be sent so I'll  click forward for all of these messages and there
  • 00:05:43
    you go the message has now been sent I've sent it  to myself so I could read that message as well so
  • 00:05:48
    here's an example you can see request messages  i'll turn interception off and there you go
Tags
  • Burpsuite
  • Android
  • Traffic Interception
  • Wi-Fi
  • SSL Certificate
  • Mobile Apps
  • HTTP History
  • Proxy Settings
  • Network Security
  • Web Security