Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to configure SSL certificates with Charles Web Proxy and the latest Android Emulator on Windows?

Tags:

android

ssl

ssl-certificate

charles-proxy

webproxy

I would like to use Charles web proxy to work with the Android emulator in Windows. I've successfully set up charles and have started the emulator with the command line:

emulator -http-proxy 127.0.0.1:8888 @NexusOne

I can see traffic coming from the android emulator in Charles, but the problem is that I'm developing against a live API which uses SSL and I'm not sure how to configure Charles to let me play about the the data which is sent and received. I'm aware of two areas where SSL is set up in Charles (Proxy -> Proxy Settings -> SSL and Proxy -> Client SSL Certificates) but I can't find any decent documentation which has let me do what I want to do. Has anyone experience with Charles, or certificates in general, who can explain how to achieve this. Maybe a primer on certificates would be good too, as I seem to be lacking knowledge as to why this is so difficult.

like image 986
Martyn Avatar asked Oct 20 '10 10:10

Martyn

People also ask

How do I use Charles Proxy on Windows?

Go to the Settings app, tap Wi-Fi, find the network you are connected to and then tap it to configure the network. Scroll down to the HTTP Proxy setting, tap Manual. Enter the IP address of your computer running Charles in the Server field, and the port Charles is running on in the Port field (usually 8888).

How do I install Charles certificate on emulator?

Install the Charles SSL Cert To do that, just open up a browser on the emulator, and navigate to http://chls.pro/ssl. The browser may prompt you to allow it to save the cert to disk, and then you can click to install it.

How do I trust Charles certificate in Windows?

In Charles go to the Help menu and choose "SSL Proxying > Install Charles Root Certificate". Keychain Access will open. Find the "Charles Proxy..." entry, and double-click to get info on it. Expand the "Trust" section, and beside "When using this certificate" change it from "Use System Defaults" to "Always Trust".

How do I trust Charles certificate on Android?

On your phone use the file manager app and, Go to Settings > Security > Install from storage. Locate your certificate file and install it.

2 Answers

To remotely capture http or https traffic with charles you will need to do the following:

HOST - Machine running Charles and hosting the proxy CLIENT – User’s machine generating the traffic you will capture

Host Machine

  1. Install fully licensed charles version
  2. Proxy -> Proxy Settings -> check “Enable Transparent HTTP Proxying”
  3. Proxy -> SSL Proxying Settings -> check “enable SSL Proxying”
  4. Proxy -> SSL Proxying Settings -> click Add button and input * in both fields
  5. Proxy -> Access Control Settings -> Add your local subnet (ex: 192.168.2.0/24) to authorize all machines on your local network to use the proxy from another machine
  6. It might be advisable to set up the “auto save tool” in charles, this will auto save and rotate the charles logs.

Client Machine:

  1. Install and permanently accept/trust the charles SSL certificate
    http://www.charlesproxy.com/documentation/using-charles/ssl-certificates/
  2. Configure IE, Firefox, and Chrome to use the socket charles is hosting the proxy on (ex: 192.168.1.100:8888)

When I tested this out I picked up two lines of a Facebook HTTPS chat (one was a line TO someone, and the other FROM)

you can also capture android emulator traffic this way if you start the emulator with:

emulator -avd <avd name> -http-proxy http://local_ip:8888/

Where LOCAL_IP is the IP address of your computer, not 127.0.0.1 as that is the IP address of the emulated phone.

Source: http://brakertech.com/capture-https-traffic-remotely-with-charles/

like image 111
brakertech Avatar answered Oct 06 '22 11:10

brakertech

In Charles, go to Proxy>>Proxy Settings and select the SSL tab. Add your host to the list of Locations.

For example, if your secure call is going to https://secure.example.com, you can enter secure.example.com, or *.example.com.

Once the above is in place, you may need to right-click on the call in the main Charles window and select the SSL Proxying option.

Hope this helps.

like image 26
bcj19 Avatar answered Oct 06 '22 10:10

bcj19
Sign in to Comment

Related questions

Warning shows when i use Hash Map In android(Use new SparseArray<String>)
How to remove the top and bottom space on textview of Android
Imagebutton change programmatically?
How can I get the application's icon from the package name?
Android download manager completed
Difference between MultiAutoCompleteTextView and AutoCompleteTextView
How do I create a Unix timestamp on Android?
getLoaderManager().initLoader() doesn't accept 'this' as argument though the class (ListFragment) implements LoaderManager.LoaderCallbacks<Cursor>
Gradle project refresh failed. Android Studio
Not able to start Genymotion device
android: Recursive copy with adb push
Removing/Adding constraint programmatically in ConstraintLayout
ConstraintLayout vs Coordinator layout?
Retrofit: multiple query parameters in @GET command?
Using drawable resources
Stopping & starting music on incoming calls
ProgressDialog in AsyncTask
RecyclerView that does not scroll and shows all items
Failed to find style 'coordinatorLayoutStyle' in current theme
Android : Showing keyboard moves my components up, i want to hide them instead

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!