[Android] Android 7.0 이상 버전 인증서

Android 7.0 이상 버전부터는 인증서를 Openssl로 생성해서 설치해줘야 Burpsuite를 사용할 수 있다.

1. Burp 인증서 설치

2. OpenSSL 설치

https://slproweb.com/products/Win32OpenSSL.html

3. openssl command prompt에서 PEM 파일 생성

openssl x509 -inform DER -in "DER파일위치" -out "PEM파일위치"

이렇게 하면 ca.pem 파일이 생성됨

 

4. 파일명을 위해 해쉬 확인

openssl x509 -inform PEM -subject_hash_old -in "pem위치 저장할위치&파일이름.pem"

5. .pem 파일 -> 파일명 해쉬.0으로 변환

 

6. adb shell push 명령어를 이용해 /system/etc/security/cacerts에 이동

C:\Users\happy\Downloads>adb connect 127.0.0.1:62001
adb server version (36) doesn't match this client (41); killing...
* daemon started successfully
connected to 127.0.0.1:62001

C:\Users\happy\Downloads>adb push C:\Users\happy\Downloads\9a5ba575.0 /system/etc/security/cacerts
C:\Users\happy\Downloads\9a5ba575.0: 1 file pushed, 0 skipped. 0.3 MB/s (1352 bytes in 0.004s)
adb: error: failed to copy 'C:\Users\happy\Downloads\9a5ba575.0' to '/system/etc/security/cacerts/9a5ba575.0': remote couldn't create file: Read-only file system

C:\Users\happy\Downloads>adb remount
remount succeeded

C:\Users\happy\Downloads>adb push C:\Users\happy\Downloads\9a5ba575.0 /system/etc/security/cacerts
C:\Users\happy\Downloads\9a5ba575.0: 1 file pushed, 0 skipped. 0.7 MB/s (1352 bytes in 0.002s)

C:\Users\happy\Downloads>adb shell "reboot"