Skip to content

pixel6 抓不到包 用的v1.3.1 #813

New issue
New issue
Closed
2 of 2 issues completed
#816
Closed
pixel6 抓不到包 用的v1.3.1#813
2 of 2 issues completed
#816
Labels
🐞 bugSomething isn't working
@Samael-Z

Description

@Samael-Z
Samael-Z
opened on Jul 30, 2025

设备版本
oriole:/data/local/tmp # cat /proc/version
Linux version 5.10.157-android13-4-00003-g776d0a76f6aa-ab10208116 (build-user@build-host) (Android (8508608, based on r450784e) clang version 14.0.7 (https://android.googlesource.com/toolchain/llvm-project 4c603efb0cca074e9238af8b4106c30add4418f6), LLD 14.0.7) #1 SMP PREEMPT Thu May 25 12:11:12 UTC 2023

ecaptrue log日志输出
oriole:/data/local/tmp # ./ecapture tls --ssl_version='boringssl_a_13' -b 2
2025-07-30T11:16:04Z INF AppName="eCapture(旁观者)"
2025-07-30T11:16:04Z INF HomePage=https://ecapture.cc
2025-07-30T11:16:04Z INF Repository=https://github.com/gojue/ecapture
2025-07-30T11:16:04Z INF Author="CFC4N cfc4ncs@gmail.com"
2025-07-30T11:16:04Z INF Description="Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64."
2025-07-30T11:16:04Z INF Version=androidgki_arm64:v1.3.1:6.8.0-1029-azure
2025-07-30T11:16:04Z INF Listen=localhost:28256
2025-07-30T11:16:04Z INF eCapture running logs logger=
2025-07-30T11:16:04Z INF the file handler that receives the captured event eventCollector=
2025-07-30T11:16:04Z INF Kernel Info=5.10.157 Pid=24837
2025-07-30T11:16:04Z INF TruncateSize=0 Unit=bytes
2025-07-30T11:16:04Z INF BTF bytecode mode: non-CORE. btfMode=2
2025-07-30T11:16:04Z INF master key keylogger has been set. eBPFProgramType=Text keylogger=
2025-07-30T11:16:04Z INF module initialization. isReload=false moduleName=EBPFProbeOPENSSL
2025-07-30T11:16:04Z INF Module.Run()
2025-07-30T11:16:04Z INF OpenSSL/BoringSSL version found sslVersion=boringssl_a_13
2025-07-30T11:16:04Z INF listen=localhost:28256
2025-07-30T11:16:04Z INF Hook masterKey function ElfType=2 Functions=["SSL_in_init"] binrayPath=/apex/com.android.conscrypt/lib64/libssl.so
2025-07-30T11:16:04Z INF target all process.
2025-07-30T11:16:04Z INF target all users.
2025-07-30T11:16:04Z INF setupManagers eBPFProgramType=Text
2025-07-30T11:16:04Z INF BPF bytecode file is matched. bpfFileName=user/bytecode/boringssl_a_13_kern_noncore.o
2025-07-30T11:16:04Z INF https server starting...You can upgrade the configuration file via the HTTP interface.
2025-07-30T11:16:05Z INF perfEventReader created mapSize(MB)=4
2025-07-30T11:16:05Z INF perfEventReader created mapSize(MB)=4
2025-07-30T11:16:05Z INF module started successfully. isReload=false moduleName=EBPFProbeOPENSSL

Sub-issues

Metadata

Metadata

Assignees

No one assigned

    Labels

    🐞 bugSomething isn't working

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions