Adding Security Exception in Android Apps to view calls via Proxy tools like charles, fiddler
To all testing people , You must be facing issues on Android to debug API calls or unable to check ssl calls . This is because of new security added . To byPass the same follow the below steps.
1)You will need APK for that either download the same from developers or get it from app store and then draw it out of your mobile.
2)Install adb
adb shell pm list packages
adb shell pm path $packageNameOfConcerned App
adb pull /data/app/$packageNameOfConcerned/base.apk
3) download entire folder from https://github.com/levyitay/AddSecurityExceptionAndroid
4) navigate to the same folder where you have downloaded AddSecurityExceptionAndroid
5) Place your apk inside the folder where you have downloaded AddSecurityExceptionAndroid
6) run shell script sh addSecurityExceptions.sh base.apk
above process will generate a apk in the same folder then install the same and then you will be able to see all the ssl calls in charles or fiddler.
This will help you debug your testing apps and analytics or any sdk calls being sent to respective servers.
Note : This for testing people and their help only please dont misuse the same.
if you are facing brut.androlib.AndrolibException: brut.common.BrutException: could not exec (exit code = 1): /tmp/base/AndroidManifest.xml:51: error: No resource identifier found for attribute 'isSplitRequired' in package 'android'
ReplyDeleteThen download new apktool from https://github.com/iBotPeaches/Apktool/issues/2139
named : android-apktool-git and replace it in addSecurityException folder with apktool.jar by renaming the same to apkTool.jar then it will work fine.