Tiktok 手机抓包

简介

抖音tiktok 有SSL pinning ,不是常见的SSL pinning通过Justtrustme 过不去这个，

设置代理

查看电脑IP 设置上游代理

mitmweb --mode upstream:http://127.0.0.1:10809 -p 9998  # upstream 暂时不支持socks5 代理

curl -x 127.0.0.1:10809 ipinfo.io
{
  "ip": "54.193.10.54",
  "hostname": "ec2-54-193-10-54.us-west-1.compute.amazonaws.com",
  "city": "San Jose",
  "region": "California",
  "country": "US",
  "loc": "37.3394,-121.8950",
  "org": "AS16509 Amazon.com, Inc.",
  "postal": "95103",
  "timezone": "America/Los_Angeles",
  "readme": "https://ipinfo.io/missingauth"
}

连接手机

苹果没有带拓展坞这里使用的是wifiadb, 没有装的可以百度下载一个

adb connect 192.168.0.80:5555

.fs -D -l 0.0.0.0:8080

frida-ps -H 192.168.0.80:8080

function hookso_ssl(){
    Java.perform(function(){
        var class_ = Java.use("org.chromium.CronetClient");
        // console.log(class_);
        class_.tryCreateCronetEngine.implementation = function(a,b,c,d,e,f,g,h){
            // console.log(a,b,c,d,e,f,g,h);
            // var result = this.tryCreateCronetEngine(a,b,c,d,e,f,g,h);
            // console.log("result==>",result);
            return ;
        }
 
    })
}
 
setImmediate(hookso_ssl)