DOWNDLOAD

Sax2 Intrusion Prevention System

  • Prevent hacker & virus attacks
  • Securing your network & business
Read More…
Free Download

How to Capture Packets on M1 Mac Using iOS Apps like Shadowrocket and HTTP Catcher

AndyHuang

Contents hide
How to install iOS applications on an M1 Mac?
M1 Mac Trust Certificate
Advanced Operations
Enable System-Wide Traffic Forwarding in Packet Capture Tools
Forward iOS Traffic to Burp on Mac with One Click
Install the Corresponding Packet Capture Tool Certificate
Related posts:

Since the M1 Mac uses the ARM architecture, it can directly run iOS applications on the Mac. Therefore, the packet capture methods for the M1 are no longer limited to traditional tools like Wireshark, Charles, and Burp. Even mobile apps like Shadowrocket, HTTP Catcher, and Thor can directly capture packets or be used as internet proxies on the Mac.

M1 Mac

How to install iOS applications on an M1 Mac?

Note: Packet capture apps for iOS need to be purchased and downloaded using a US Apple ID.

Open the App Store on your Mac, select iPhone and iPad Apps, search for Shadowrocket, and install it.

M1 Mac

M1 Mac Trust Certificate

In Keychain, choose to always trust the certificate.

After installing the certificate in Shadowrocket, import the proxy nodes to start using it.

Shadowrocket running on macOS, making internet access as convenient as on a mobile phone

The same usage applies to other iOS packet capture tools and Shadowrocket.

Advanced Operations

Enable System-Wide Traffic Forwarding in Packet Capture Tools

When performing penetration testing, such as capturing data packets from WeChat mini-programs, you need to modify the system settings on the Mac to capture packets; otherwise, the mini-programs won’t go through the proxy.

Modifying the settings each time can be cumbersome. You can configure it in the packet capture tool and enable it with one click when needed.

For example, using HTTP Catcher on the Mac.

Forward iOS Traffic to Burp on Mac with One Click

Configuring remote proxy for Wi-Fi on iOS through system settings can be troublesome for the following reasons:

  • The changes are not saved, so you have to re-enter them next time.
  • Switching to a different Wi-Fi network requires reconfiguring the proxy.

You can first enable Wi-Fi access on the Mac. Then configure the proxy on iOS HTTP Catcher to the Mac’s IP and port. Enable it with one click whenever you need to capture mobile data packets, saving a lot of time.

System proxy configuration, unable to save configurationHTTP Catcher configuration

Install the Corresponding Packet Capture Tool Certificate

HTTP Catcher ‘iOS’ -> HTTP Catcher ‘Mac’ -> Burp ‘Mac’

For example, if we use HTTP Catcher to forward iOS traffic to Burp, we need to install Burp’s certificate on iOS.

Related posts:

  1. How to Avoid Phishing Scams
  2. Block bad ICMP messages to Prevent ICMP attacks
  3. DNS spoofing
  4. How to Prevent Denial of Service Attack (DDoS Attack)