levyitay/AddSecurityExceptionAndroid levyitay/AddSecurityExceptionAndroid

  • Stars
    star
    681
  • Rank 65,781 (Top 2 %)
  • Language
    Shell
  • License
    Apache License 2.0
  • Created almost 8 years ago
  • Updated 4 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
levyitay/AddSecurityExceptionAndroid
github

levyitay

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Important

The latest update including some breaking changes in the arguments.

Add Security Exception to APK

In Android 7.0, Google introduced changes to the way user Certificate Authorities (CA) are trusted. These changes prevent third-parties from listening to network requests coming out of the application: More info:

  1. https://developer.android.com/training/articles/security-config.html
  2. http://android-developers.blogspot.com/2016/07/changes-to-trusted-certificate.html

This script injects into the APK network security exceptions that allow third-party software like Charles Proxy/Fiddler to listen to the network requests and responses of some Android applications.

Getting Started

Download the script and the XML file and place them in the same directory.

Prerequisites

  • Java Installed

Usage

The script arguments:

  1. (optional) -d | --debuggable Make the new APK also debuggable

  2. (optional) -k | --key-store [Signing Keystore] path to signing key

  3. (optional) -b | --build-tools Set custom android build tools path

  4. APK file path.

Examples

./addSecurityExceptions.sh myApp.apk

or

./addSecurityExceptions.sh -d --build-tools ~/Library/Android/sdk/build-tools/ -k ~/.android/debug.keystore myApp.apk

More Repositories

1

Rest2Go

Java
2
star
2

xmlBuilder

Java
1
star
3

Rest2GoUtils

1
star
4

Test

1
star
5

MoveEat

Java
1
star