Since the Certificate is not Trusted and we are MiTM-ing the connection, a notification will pop-up saying: Network May be monitored by an Unknown Third party Install the Certificate from Settings->WiFi->Advanced->Install Certificate, select your file and Install it. Otherwise you can use a Cert from Charles CA visiting this url:.In GenyMotion you can also Drag&Drop the Cert file on the Emulator. If you want to generate your certificate, follow Generate your own CA cert for charlesĪnd then Transfer the Certificate to the Android Device with adb push ca_cert.pem sdcard/.Now you need to install an SSL Certificate on your device.Step on Android will be highlighted like this Configuring Charles Proxy Genymotion/Android Emulator ( if you want emulate the App).ARP-Poison your device and Run Wireshark.set your PC as WiFi Hotspot and Run Wireshark.If you want more Deep Packet Inspection, you can: If you want to use OWASP ZAP read Intercepting Android traffic using OWASP ZAP
If you don’t know how to use Charles read the Charles Website. In this Post I want to cover the Configuration of the Proxy Connection, When testing for Application Security, sometimes A PenTester need to Analyze the network connections that some Application makes, like how uses APIs, what data transfer Intercepting Android traffic using Charles
