GitHub/PCAPdroid
1
0
Fork 0
mirror of https://github.com/emanuele-f/PCAPdroid.git synced 2026-05-08 21:12:26 +00:00
Code Issues Packages Projects Releases Wiki Activity
21 Commits 6 Branches 72 Tags
9ab206fd31df7ca6b6ea5672aea85ddd6471f801
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Emanuele Faranda 9ab206fd31 Update README.md
2019-10-26 13:18:43 +02:00
.idea
First commit
2019-09-08 22:09:03 +02:00
app
Add playstore assets and fix crash on some devices
2019-10-26 13:08:18 +02:00
gradle/wrapper
Update gradle version
2019-10-05 21:29:46 +02:00
ICONS_LICENSE/app_icon
Add playstore assets and fix crash on some devices
2019-10-26 13:08:18 +02:00
playstore
Add playstore assets and fix crash on some devices
2019-10-26 13:08:18 +02:00
zdtun
First commit
2019-09-08 22:09:03 +02:00
.gitignore
First commit
2019-09-08 22:09:03 +02:00
build.gradle
Update gradle version
2019-10-05 21:29:46 +02:00
COPYING
Add license
2019-09-08 22:11:07 +02:00
gradle.properties
First commit
2019-09-08 22:09:03 +02:00
gradlew
First commit
2019-09-08 22:09:03 +02:00
gradlew.bat
First commit
2019-09-08 22:09:03 +02:00
README.md
Update README.md
2019-10-26 13:18:43 +02:00
settings.gradle
First commit
2019-09-08 22:09:03 +02:00

README.md

Remote Capture

Remote Capture captures the android apps traffic to analyze it remotely (e.g. via Wireshark). The traffic is sent live via an UDP socket and can be easily captured remotely with:

Features:

  • Capture apps traffic without root
  • Send captured traffic via UDP
  • Show captured traffic realtime statistics
  • Apply a filter to only capture traffic for the selected app

Receiving the PCAP

In order to receive the PCAP on the collector host, perform the following steps in order:

  1. Ensure that the Remote Capture VPN is not running (key icon is not shown)
  2. Run the PCAP collector program (e.g. wireshark) on the host
  3. Start the Remote Capture VPN via the start button

To start a new capture, stop the VPN and repeat the steps above.

Examples

  • Analyze the traffic in Wireshark:
socat -b 65535 - udp4-listen:1234 | wireshark -k -i -
  • Write the traffic to a PCAP file:
socat -b 65535 - udp4-listen:1234 | tcpdump -w dump.pcap -r -

Note: the -b option of socat is required as the default UDP buffer size of 8192 B of nc or socat is not enough to handle the encapsulated packets.

Building

In order to build the app, you need to clone https://github.com/emanuele-f/zdtun beside the RemoteCapture directory

Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
androidcapture-trafficdecryptionfirewallnetwork-analysisno-rootpcappcap-filessniffersniffingtraffic-monitorwireshark
Readme 25 MiB
Languages
Java 60.1%
C 38.3%
Python 0.8%
Lua 0.4%
CMake 0.3%