Vulnerability discovery - App application vulnerability probe type utilization and repair

 Train of thought ：
 Decompile extract  URL  Or packet capture  URL, Conduct  WEB  Application testing , If there is no agreement or other agreement , Net required 
 The network interface captures packets for data acquisition , Go to other protocol security tests ！

APP->WEB APP-> other  APP-> reverse 
WEB  Grab the bag , Other protocol capture demonstration and description 
 There is no packet capture at the reverse level to distinguish the testing of each protocol 
 Reverse layer extraction  APK  Code level data 
https://www.cnblogs.com/L0ading/p/12388928.html

Case presentation ：

Caught tools WEB Instructions for the use of the protocol surface
Packet capture tool non WEB Instructions for the use of the protocol surface
Android reverse convenience APK One click extraction URL demonstration
utilize Burp Screening and linkage function to play Military Boxing
Simulator four illegal cases APP Safety analysis and testing

Caught tools WEB Instructions for the use of the protocol surface （ demonstration ）

burp Agent fills in this machine ip, Port and port ip Corresponding to the mobile phone simulator
burp advantage ： On the simulator app The packets of all operations will be sent to HTTPhistory in , And you can filter and search packets by keywords
Open... In the simulator app, A blind meal , The packets are all recorded HTTPhistory in

Teacup Charles Caught tools （ demonstration ）

Modify and set the proxy port

Check windows agent Open... In the simulator after setting app,Charles The data package url Capture records

Bag grabbing spirit

Wireshark Grab the bag

Other packet capturing software may only catch HTTP agreement , It can be used Wireshark Capture network interface . There are various agreements .

Android reverse convenience APK One click extraction URL

Leak a big hole

utilize Burp Screening and linkage function to play Military Boxing

linkage Xray or awvs
xray Turn on port monitoring , monitor 127.0.0.1:6666 The data on the
Turn on burp agent （ Which packet to grab ）

Will all pass burp All data is forwarded to 127.0.0.1:6666 On
Set up a proxy for the simulator , Let its data go through burp transmitted .（ Here the agent address and burp The same as ）
Yes app To operate , The corresponding packets will be forwarded to in real time xray On
technological process ：
Simulator setup and burp The same agent , Access through the simulator app when , The accessed packets will pass through burp.burp Forward the data packet to the corresponding port through data forwarding , And then through xary Listen to this port . The packet will be in xary Real time display .