1. Home
  2. bsxp
  3. okhttp-logging

okhttp-logging

by
6 views 8d9fdaab...

Description

This script will add HttpLoggingInterceptor at OkHttpClient, so the HttpLoggingInterceptor will print all requests and responses.

How to Use

Download the script and run it with Frida CLI:

Download Script

Then run with Frida:

frida -U -f YOUR_PACKAGE_NAME -l okhttp-logging.js

Replace YOUR_PACKAGE_NAME with the target app's package name.

Source Code

JavaScript 
/*  Log all http/https requests and responses of okhttp
    by bsxp
    GitHub: https://github.com/bsxp/
    
    Source: https://codeshare.frida.re/bsxp/okhttp-logging/
    
    This script will add HttpLoggingInterceptor at OkHttpClient, so
    the HttpLoggingInterceptor will print all requests and responses.

    This strategy does not matter if you are doing TLS Pinning bypass m

    Run with:
    frida -U -f [APP_ID] -l okhttp-logging.js --no-pause
    or
    frida --codeshare bsxp/okhttp-logging -U -f [APP_ID] --no-pause
*/

setTimeout(function() { // avoid java.lang.ClassNotFoundException

    Java.perform(() => {

        console.log('');
        console.log('======');
        console.log('[#] Android OKHttp logging by bsxp [#]');
        console.log('======');


        //Create a new instance of HttpLoggingInterceptor class
        function getInterceptor() {
            try {

                const HttpLoggingInterceptor = Java.use('okhttp3.logging.HttpLoggingInterceptor');
                const Level = Java.use('okhttp3.logging.HttpLoggingInterceptor$Level');

                const MyLogger = Java.registerClass({
                    name: 'MyLogger',
                    superClass: Java.use('java.lang.Object'),
                    implements: [Java.use('okhttp3.logging.HttpLoggingInterceptor$Logger')],
                    methods: {
                        log: [{
                            returnType: 'void',
                            argumentTypes: ['java.lang.String'],
                            implementation: function(message) {
                                console.log('    [LOG] ' + message);
                            }
                        }]
                    },
                });

                var logInstance = HttpLoggingInterceptor.$new(MyLogger.$new());

                //If you want to log at the logcat just change to the line bellow
                //var logInstance = HttpLoggingInterceptor.$new();

                logInstance.setLevel(Level.BODY.value);

                return logInstance;

            } catch (err) {
                console.log("[-] Error creating interceptor")
                console.log(err);
                console.log(err.stack)
                return null;
            }
        }


        try {
            var Builder = Java.use('okhttp3.OkHttpClient$Builder')
            var build = Builder.build.overload();
            build.implementation = function() {
                console.log('[+] OkHttpClient$Builder ==> Adding log interceptor')

                //Add the new interceptor before call the 'build' function
                try {
                    this.addInterceptor(getInterceptor());
                } catch (err) {
                    console.log('[-] OkHttpClient$Builder.addInterceptor error');
                    //console.log(err);
                }

                return build.call(this);
            }

        } catch (err) {
            console.log('[-] OkHttpClient$Builder error');
            console.log(err);
        }


    });


}, 1000);
Share this script:
Twitter LinkedIn

Comments

Login or Sign up to leave a comment.
Loading comments...