Android Device

How to install Proxyman CA on Android Devices

In order to to capture the HTTP/HTTPS message in Android devices, please navigate to:

  • Certificate Menu -> Install Certificate on Android Devices

Android Setup Guide

The following photo describes thee steps:

  1. Install Root Proxyman Certificate on your machine: You can follow the macOS Guide.

  2. Config the HTTP Proxy on your device: You can find it in Setting app -> Wifi -> Select the current Wifi -> Config the HTTP Proxy by following the next tables.

Name

Value

Server IP

Your current IP Network

Port

The current port of Proxyman: 9090 is default

Authentication

No

Some SamSung devices couldn't access to the Internet after setting the HTTP Proxy. Please try to forget your current network and connnect again.

If you're using VPN, please make sure to close it, since some VPN apps conflict with HTTPS Proxy config

3. Open http://proxy.man/ssl from web browser on your Android Devices in order to install the Proxyman Certificate.

http://proxy.man/ssl is local website, which serve from the local Proxyman's HTTP server. If you couldn't open it, please forget the wifi, re-connect and make sure the Proxyman app is opening.

If you couldn't access. Please open the support ticket at Github's repo.

4. From Android N, we have to trust Proxyman Certificate in your app by adding the following code: It means that you can only use SSL Proxying in apps, which you are control

  • Add res/xml/network_security_config.xml

network_security_config.xml
<network-security-config>
<debug-overrides>
<trust-anchors>
<!-- Trust user added CAs while debuggable only -->
<certificates src="user" />
</trust-anchors>
</debug-overrides>
</network-security-config>
  • Add to manifest.xml

manifest.xml
<?xml version="1.0" encoding="utf-8"?>
<manifest ... >
<application android:networkSecurityConfig="@xml/network_security_config" ... >
...
</application>
</manifest>

Find more information at Network Security Configuration

SSL Proxying

After the installation, we can start capture and view HTTPS message by following SSL Proxying Doc

SSL Proxying using Root Device

Credit for Shirshak

If your Android version is below 7 you don't need to do this step. Google added extra security that don't allow man in middle to attack after Android 6. i.e unable to do mitm attack to android app.

We don't bear any responsibility for problems due to rooting phone. So please follow guide at your own risk.

  1. Root your phone with magisk framework.

  2. Install Root file browser so you can copy and paste file in restricted system folder.

  3. Type following script in command line

    $ cd ~/.proxyman
    // We copy certificate to another file name just so we may need it later
    $ cp proxyman-ca.pem temp.pem
    $ hash=$(openssl x509 -inform PEM -subject_hash_old -in temp.pem | head -1)
    $ mv temp.pem "$hash.0"
  4. If you go to ~/.proxyman folder you must notice a file name starting with numbers with extension .0 . Copy that file to andriod.

  5. Using root file browser transfer that file to /system/etc/security/cacerts/

  6. Enjoy proxing.

  1. When using andriod phone set gateway to wrong ip just so you can be sure all your traffic goes from proxy man proxy only.

  2. We can use mac sharing feature to create a mobile hotspot. And From android phone you can use Proxyman proxy easily. It is much better because sometime router can block request between mobile and macos.