mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-16 12:45:17 +03:00
71 lines
4.1 KiB
Markdown
71 lines
4.1 KiB
Markdown
# Workflows: Mobile Traffic Interception with Burp Suite
|
|
|
|
## Workflow 1: Standard Mobile API Testing
|
|
|
|
```
|
|
[Configure Burp Listener] --> [Set Device Proxy] --> [Install CA Cert] --> [Open Target App]
|
|
|
|
|
v
|
|
[Capture HTTP History]
|
|
|
|
|
+---------------------+---------------------+
|
|
| | |
|
|
[Map API surface] [Identify auth flow] [Check data exposure]
|
|
| | |
|
|
v v v
|
|
[Send to Scanner] [Token analysis] [PII in responses]
|
|
[Active scan] [Session testing] [Sensitive headers]
|
|
| | |
|
|
+---------------------+---------------------+
|
|
|
|
|
[Compile findings]
|
|
[Generate report]
|
|
```
|
|
|
|
## Workflow 2: SSL Pinning Bypass Pipeline
|
|
|
|
```
|
|
[Set Proxy] --> [Open App] --> [Connection fails?]
|
|
|
|
|
[Yes: Pinning active]
|
|
|
|
|
+--------------+--------------+
|
|
| | |
|
|
[Frida bypass] [Objection] [APK repackage]
|
|
[Generic script] [sslpinning] [Remove pinning code]
|
|
| [disable] |
|
|
+--------------+--------------+
|
|
|
|
|
[Verify traffic flows]
|
|
[Continue assessment]
|
|
```
|
|
|
|
## Workflow 3: Authentication Testing
|
|
|
|
```
|
|
[Intercept login request] --> [Capture auth token] --> [Analyze token format]
|
|
|
|
|
+----------+----------+
|
|
| |
|
|
[JWT analysis] [Opaque token]
|
|
[Decode payload] [Session management]
|
|
[Check signature] [Timeout testing]
|
|
[Modify claims] [Concurrent session]
|
|
| |
|
|
+----------+----------+
|
|
|
|
|
[Test IDOR with user IDs]
|
|
[Test privilege escalation]
|
|
[Test token replay after logout]
|
|
```
|
|
|
|
## Decision Matrix: Traffic Interception Approach
|
|
|
|
| Scenario | Android | iOS |
|
|
|----------|---------|-----|
|
|
| No pinning, API < 24 | Standard proxy + user CA | Standard proxy + profile install |
|
|
| No pinning, API 24+ | System CA or network_security_config mod | Standard proxy + profile install |
|
|
| Pinning implemented | Frida/Objection bypass + system CA | Frida/Objection bypass |
|
|
| Custom protocol | Wireshark + custom Frida hooks | Wireshark + custom Frida hooks |
|
|
| VPN tunnel | iptables redirect on rooted device | Not feasible without jailbreak |
|