Charles Catch HTTPS request

1. Install Charles on the computer

2, the computer installation certificate

(1) Click Help-ssl proxying-install charlse Root Certificate

(2) Find the certificate on the computer. At this point the certificate is not trusted, so the front is the Red fork.

(3) Right-click certificate "Show Info". Select Always trust when using this certificate

(4) After the trust certificate is as follows:

3, set up the agent on the phone.

(1) mobile phone connected to WiFi, to ensure that the phone and computer in the same network segment.

(2) on the phone on the connected WiFi setting agent is manual, the server address is the computer address, the port is 8888. (Charles default is 8888, can be modified in Proxy-proxy Settings)

4, install the certificate on the mobile phone.

(1) Check the address of the download certificate on your computer. Click Help-ssl proxying-install charlse Root Certificate on a Mobile Device or Remote Browser. Then pop up the window below and then open the browser on your phone to access the address. I'm here for: Chls.pro/ssl. After the browser accesses the address, it automatically pops up to download the certificate, you just need to agree.

(2) installation.

Download the certificate for Iphone:① and click Install. ② Settings-General-about the native-certificate trust settings, turn on the switch for the certificate you just installed.

For Android:

① Download the certificate. (cannot be installed directly on Android)

② Settings-Security and privacy-Install the certificate from the storage device, pop up the directory, select the certificate you just downloaded.

③ General above 2 steps is finished. However, you can verify that the installation certificate for section ② has not succeeded. [1], Settings-Security and privacy-trusted credentials-the user, can see the installed certificate that proves the installation is ready. [2], my mobile phone has been installed in the notification bar has been prompted "by unknown third-party monitoring", which can also prove that the certificate was installed. If you don't want to see this after you grab the bag, click Settings-Security and privacy-clear all your credentials.

By doing this, you can catch the HTTPS packet on your phone. But why are some packages not caught and shown as unknown?

After a careful examination you will find that these unknown request methods are connect. So far I do not know how to catch it, to the great God answer.

You can click here and refer to this article to find out why the request for connect was not caught.

Charles Catch HTTPS request