Android Device & Emulator
How to set up Android Device or Emulator with Proxyman to capture HTTP/HTTPS Requests/Response
Last updated
How to set up Android Device or Emulator with Proxyman to capture HTTP/HTTPS Requests/Response
Last updated
In order to capture and decrypt HTTP/HTTPS request/response from your physical Android Devices or Android Emulators, please navigate to:
Certificate Menu -> Install Certificate on Android -> Device
Certificate Menu -> Install Certificate on Android -> Emulator
If you want to capture & decrypt HTTP/HTTPS Traffic from your Physical or Emulator Android Device, please follow all steps in the setup guide:
Certificate Menu -> Install Certificate on Android -> Device
Get your Android Device or Emulator -> Open Setting app -> Wifi -> Select the current Wifi -> Config the HTTP Proxy by following the next tables.
Server IP
Your current IP Network
Port
The current port of Proxyman: 9090 is the default
Authentication
No
Visit http://proxy.man/ssl from the Google Chrome app to download the certificate.
From Android 11 or later, you have to manually install the certificate in the Setting app.
Settings app -> Security -> Encryption & Credentials -> Install a Certificate -> Selec "CA Certificate" -> Select Proxyman CA Certificate in your storage.
As soon as you visit http://proxy.man/ssl, your Android devices will download and install it automatically. Make sure you select the VPN and App Section.
4. On Android 11 and Android 12. Let's verify by opening the Trusted Credentials -> User Tab.
Make sure you can see the Proxyman CA Certificate like the below screenshot.
5. Open your app Source Code: Adding the two following xml
files.
Add res/xml/network_security_config.xml
Add to AndroidManifest.xml
6. If it's Android Emulator, please restart the emulator
7. Done ✅
If you've struggled to config XML settings, let's check out this simple project that we've configured:
Some Android apps have embedded WebView that requires extra steps in order to intercept HTTPS traffic.
Make sure you're able to see other HTTPS traffic from your Android app. It means that you've set up the certificate properly
Inject the following code to your WebView
3. Open a new Chrome tab on your computer and navigate to chrome://inspect
4. When you open the WebView, the view will appear in your Chrome tab, then you can simply click inspect
to start using the remote debugger.
If your Android version is below 7 you don't need to do this step. Google added extra security that doesn't allow man-in-middle-app to attack after Android 6. i.e unable to do MITM attack on android apps.
We don't bear any responsibility for problems caused by rooting phones. So please follow the guide at your own risk.
Root your phone with magisk
framework.
Install the Root file browser so you can copy and paste files in a restricted system folder.
Type the following script in the command line
If you go to ~/.proxyman
folder you must notice a file name starting with numbers with extension
Copy that file to your Android.
Using root file browser transfer that file to /system/etc/security/cacerts/
Enjoy proxying.
Install Root Proxyman Certificate on your machine: You can follow the .
3. Open or http://cert.proxyman.io from the native web browser on your Android Devices in order to install the Proxyman Certificate.
Ref:
Find more information at
Please check out this
Github Link:
If you're using React Native for the Android app, please check out the .
Credit for
Mitmproxy has a useful tutorial on how to install Proxyman Certificate on your Android Emulator: