Search code examples
androidsslburp

Burp Suite - Pixel 2 XL (Android P) can't find a way to certificate using Burp Suite

So I have been trying to get requests/SSL through burp using my phone. basically I followed these steps very carefully many times:

Configuring your Browser to work with Burp Configuring an Android Device to Work With Burp

I used different ports such as 8888, 8082, 8080 and I also of course change the port in the wi-fi that I use with the computers IP etc 192.168.10.190 - First of all it says on my phone that it couldn't find any network but when I access etc Google, Youtube it works fine. What I then need to do is to get a certification so I can use it as trusted certfication/device

so I followed this one:

Installing Burp's CA Certificate in an Android Device

So whenever I try to access http://burp to get certification it says ERR_NAME_NOT_RESOLVED/No response received from remote server - I tried using http://localhost:8080/ but same issue.

What can I do to make it work so I can see all the requests/SSL through Burp Suite?

To chris:

<?xml version="1.0" encoding="utf-8"?>
<network-security-config>
    <base-config>
        <trust-anchors>
            <certificates src="system" />
            <certificates src="user" />

        </trust-anchors>
    </base-config>
    <debug-overrides>
        <trust-anchors>
            <certificates src="user" />
        </trust-anchors>
    </debug-overrides>
</network-security-config>
Solution

  • I found a little trick to use the Burp certificate on Android from 4.2 and up.

    Requisite: Install Firefox

    1. Listen on all interfaces

      Proxy Options

    2. Access from you Computer http://127.0.0.1:8080 and download "cert.der" clicking on "CA Certificate" link on Top Right corner

      enter image description here

    3. Open "Firefox", go to Options / Privacy and Security / Certificates.

    4. Open "See certificates" dialog, go to "Authorities", click "Import" and choose the saved "cert.der" file.

    5. Scroll down to PortSwigger Auth, select "PortSwigger CA" and click Export.

    6. Save this file as "PortSwiggerCA.crt"

    7. Upload this file to your Android Phone

    8. Go To Settings

    9. Type on search box: "Install from Storage"

    10. Select the "PortSwiggerCA.crt" file

    11. Choose "Apps" not "WI-FI"

    12. Go to your Wireless Advanced Settings, use Manual Proxy and point to your Machine local network address. Ex.: 192.168.1.200 port 8080

    13. Voilá

      enter image description here

    Obs.: This will not work with Certificate Pinned APK's like Whatsapp and Facebook. You need to tweak them.