Burp Suite User Forum

Login to post

Is there some different configurations required for intercepting Flutter and ARM based mobile application

Vayaa | Last updated: Dec 20, 2021 05:54AM UTC

I'm not able to intercept the traffic of the ARM android application, however i can clearly see traffic passing via wireshark. The application does not have ssl pinning and burp is properly configured with emulator as i'm able to intercept http/s traffic of other applications.

Ben, PortSwigger Agent | Last updated: Dec 21, 2021 08:13AM UTC

Hi, Flutter uses the Dart package, which does not appear to adhere to the system proxy settings of the device. You might be able to use the ProxyDroid Android app to force all the traffic from the device to the Burp proxy via Iptables. The following article has some useful information regarding this: https://blog.nviso.eu/2019/08/13/intercepting-traffic-from-android-flutter-applications/

You need to Log in to post a reply. Or register here, for free.