Files
Anthropic-Cybersecurity-Skills/skills/intercepting-mobile-traffic-with-burpsuite/references/api-reference.md
T
mukul975 27c6414ca5 Add folder anatomy (scripts/agent.py + references/api-reference.md) for 648 cybersecurity skills
Complete skill folder anatomy across all cybersecurity skills:
- scripts/agent.py: 80-150 line Python agents using real libraries (impacket,
  boto3, azure-mgmt-*, kubernetes, pefile, yara, scapy, shodan, stix2, etc.)
- references/api-reference.md: real API documentation with method signatures
- LICENSE: MIT license for all skill folders
2026-03-10 21:02:12 +01:00

1.7 KiB

API Reference: Mobile Traffic Interception with Burp Suite

HAR (HTTP Archive) Format

Structure

{"log": {"entries": [{"request": {"method": "GET", "url": "https://...",
  "headers": [{"name": "Authorization", "value": "Bearer ..."}],
  "postData": {"text": "..."}},
  "response": {"status": 200, "headers": [...],
  "content": {"text": "..."}}}]}}

Key HAR Fields

Field Description
request.url Full request URL
request.method HTTP method
request.headers Request headers array
request.postData.text POST body content
response.status HTTP status code
response.content.text Response body

Burp Suite Proxy Setup for Mobile

  1. Set proxy listener: 127.0.0.1:8080
  2. Configure device WiFi proxy to Burp IP:8080
  3. Install Burp CA: http://burp/cert
  4. Export traffic as HAR: Proxy > HTTP History > Save Items

mitmproxy Alternative

mitmproxy --mode regular --listen-port 8080
mitmdump -w output.flow --set flow_detail=3
# Convert to HAR:
mitmproxy2har output.flow > capture.har

Certificate Pinning Bypass

Platform Tool
Android Frida + objection (objection explore --startup-command 'android sslpinning disable')
iOS SSL Kill Switch 2 (Cydia)

Sensitive Data Patterns

Type Regex Pattern
Email [a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}
Credit Card `\b(?:4\d{3}
JWT eyJ[a-zA-Z0-9_-]+\.eyJ[a-zA-Z0-9_-]+\.[a-zA-Z0-9_-]+

References