Raphael/SCHALE.GameServer
Raphael
/
SCHALE.GameServer
2
4
Fork 2
Code Issues Pull Requests Packages Projects Releases Wiki Activity
SCHALE.GameServer/Mitmproxy_Readme_EN.md

4.2 KiB
Raw Permalink Blame History

Mitmproxy Usage Guide

(By 北野樱奈)

Prerequisites

  1. Download mitmproxy and install it.
  2. Basic knowledge of WireGuard and Python scripting.
  3. A client device (e.g., Android emulator or smartphone) and a host machine running mitmproxy.

Installation Steps

  • Linux/Mac
# Ubuntu/Debian  

sudo apt update  
sudo apt install mitmproxy  

# macOS  
brew install mitmproxy
  • Windows: Download the .exe installer from mitmproxy.org and follow the instructions to complete the installation.

Verify Installation

Run the following command to verify the installation:

mitmproxy --version

Step 2: Install CA Certificates on Client and Server

To decrypt HTTPS traffic, the client needs to trust the mitmproxy CA certificate.

Steps

  1. Start mitmproxy to generate the certificate:
mitmdump
  1. On the PC, navigate to C:\Users\YourUser\.mitmproxy to locate the certificate file (mitmproxy-ca.p12).
  2. In the mitmproxy directory, locate mitmproxy-ca-cert.crt.
  3. Rename mitmproxy-ca-cert.crt to c8750f0d.0.
  4. Install the certificate as a system CA.

For Android Devices

  1. Move the certificate to the system CA directory:
adb root  
adb remount  
adb shell mv /sdcard/c8750f0d.0 /system/etc/security/cacerts/
  1. Set the correct permissions:
adb shell chmod 644 /system/etc/security/cacerts/c8750f0d.0
  1. Reboot the device:
adb reboot

Step 3: Download the Redirect Script

Download the script from the repository.

Note: Make sure to modify the IP address in redirect_server.py.

import gzip  
import json  
from mitmproxy import http  

SERVER_HOST = 'Replace this with your IP'  
SERVER_PORT = 80  

REWRITE_HOST_LIST = [  
    'ba-jp-sdk.bluearchive.jp',  
    'prod-gateway.bluearchiveyostar.com',  
    'prod-game.bluearchiveyostar.com',  
    # 'prod-notice.bluearchiveyostar.com',  
    # 'prod-logcollector.bluearchiveyostar.com',  
]

Step 4: Launch mitmproxy and Load the Script

Run the following command to start mitmproxy with the redirect script:

mitmweb -m wireguard --no-http2 -s redirect_server.py --set termlog_verbosity=warn --ignore Your IP

Parameter Explanation:

  • -m wireguard: Use WireGuard as the network layer.
  • --no-http2: Disable HTTP/2 to improve compatibility.
  • -s redirect_server.py: Load the redirect script.
  • --set termlog_verbosity=warn: Set log level to warnings only.

You can monitor traffic through the mitmweb interface at http://localhost:8081.

Step 5: Install and Configure WireGuard

Use WireGuard to route client traffic to mitmproxy.

Installation Steps

Configuration Steps

  1. Open the WireGuard client, click the + button in the bottom left corner, and select Scan QR Code.
  2. The emulator will display a scanner window. Select Real-time Screenshot.
  3. Position the screenshot over the QR code in the Mitmproxy browser page (accessible via settings).
  4. Enable the configuration.

Troubleshooting

Error: Client TLS handshake failed. The client does not trust the proxy's certificate for yostar-oversea-netsdk-logging.ap-southeast-1.log.aliyuncs.com (OpenSSL Error([('SSL routines', '', 'ssl/tls alert certificate unknown')]))

  • Ensure that both the PC and client have the same Mitmproxy certificate installed.
  • Verify that the Mitmproxy certificate is properly installed on both ends.

Android Certificate Disappears After Installation

  • Use the MT Manager to grant SU (superuser) permissions.
  • Navigate to /system/etc/security/cacerts/.
  • Locate c8750f0d.0 and set the permissions to 664. The user group should be set to root.