Several methods of capturing packets under CS framework

burp+Proxifier Carry out the bag

Installation certificate

After installing the certificate, configure the host agent , Can be directly from chrome Get into

Pay attention to choose to install under the trusted root certification authority

Proxifier Set up burp Agent for

Because of the burp So let it go java My bag , Other package agents

This method does not capture the login package

Then close the agent , After login Proxifier Of traffic forwarding

Fiddler Everywhere+burp Use

install Fiddler Everywhere certificate

Set up the global agent （Fiddler Everywhere It will be configured automatically , You'd better check it ）

A pin sets the browser proxy

View packets

Usual burp Use a little more ,Fiddler Everywhere Use a little more .

Set the upper agent to burp Listening port

And then you can burp Tested in

Simulator +Burp Grab the bag

First visit Fiddler Everywhere Listening port ( The experience card expires )

quite a lot cs Most of the applications of the architecture are mobile applications .

I use Raytheon simulator here 3.0 Stable version , The high version does not take the agent

Because the version is low, the certificate import needs to be imported from the settings , There is no way to double-click import , There are many tutorials online .

Install the bridge drive

After installation, you need to restart , Restart and enter the simulator , stay wifi Add proxy at

Then you can catch the bag

Use NoPE Capture traffic （TCP）

Need to use NoPE, He is a burp The plug-in of is used to grab non http My bag

Download address ：https://github.com/summitt/Burp-Non-HTTP-Extension

Use Proxifier Setting agent , take PE File proxy to 8081 port

Set what to listen to PE file

burp Setting agent , Listen to all, and then the port is 8080

open NoPE, Set up dns analysis

Set the corresponding forwarding , For grabbing bags , Here will be 8081 The data received by the port turns 8080 port

Remember to click , take 80 and 443 add

Then you can see the bag you grabbed

You can also replay the data

If there is anything wrong, please correct it ！

Burning sword security team

Burning sword security team （Tsojan Security Team） Focus on web Security 、 Intranet Security 、 Domain security 、 Network attack and defense 、 Mobile terminal security 、IOT Security 、 Code audit 、 Loophole recurrence ,APT Related technology and other research directions , Only relevant technical research articles are published .

official account