pwny.cc
  • Home
  • SO
    • AI
      • Evasion
        • Exercise 1
        • Exercise 2
        • Exercise 3
        • Exercise 4
    • Android
      • adb
      • apktool
      • burp suite
      • dns spoofing
      • frida
      • intent
      • jadx
      • JNI
      • objection
      • tcpdump
      • webview
    • iOS
      • objection
    • Linux
      • Internal Recon
      • Bypasses
      • Network
      • Exfiltration
      • Containers
      • Iptables
    • Windows
      • Internal Recon
      • External Recon
      • Bypasses
      • Network
      • Exfiltration
  • SHELLS
    • Misc
    • Web Shells
    • Reverse Shells
    • Obfuscated Shells
  • WEB ATTACKS
    • Misc
    • Command Injection
    • Cross-Site Scripting (XSS)
      • XSS Tips
      • WAF Bypasses
    • Insecure Direct Object Reference (IDOR)
    • Insecure File Upload
    • Local File Inclusion (LFI)
      • Bypass Techniques
      • LFI to RCE
    • OAuth
    • Open Redirect
      • Open Redirect to XSS
    • Server Side Request Forgery (SSRF)
    • Server Side Template Injection (SSTI)
    • SQL Injection (SQLi)
      • SQLMap
      • MySQL
      • MSSQL
      • Oracle
      • PostgreSQL
    • XML External Entity (XXE)
  • OTHER
    • Cracking
      • Hashcat
      • John the Ripper
    • Sandbox Escape
Powered by GitBook
On this page
  • How to sniff traffic from Android emulator
  • References

Was this helpful?

  1. SO
  2. Android

tcpdump

A powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture.

PreviousobjectionNextwebview

Last updated 7 months ago

Was this helpful?

How to sniff traffic from Android emulator

Check which AVDs are present

emulator -list-avds

Select your AVD and run (avoid this part if you are running the emulator yet)

emulator -avd <non_production_avd_name> -writable-system -no-snapshot

Install tcpdump on the Android device (download here: )

adb root
adb remount
adb push /wherever/you/put/tcpdump /system/xbin/tcpdump
adb shell chmod 6755 /system/xbin/tcpdump

Forward an android port to host

adb forward tcp:11111 tcp:11111

Start sniff traffic with tcpdump

adb shell
tcpdump -i wlan0 -s0 -w - | nc -l -p 11111

Connect wireshark to the forwarded port via netcat

nc localhost 11111 | wireshark -k -S -i -

References

https://www.androidtcpdump.com/android-tcpdump/downloads
Home | TCPDUMP & LIBPCAP
Logo