Genymotion Desktop 3.7.1 is out!

Use Burp Suite with Genymotion SaaS

Prerequisites

  • Burp suite
  • Android SDK platform-tools (adb)
  • gmsaas CLI tool
  • openssl (optional)

Step 1 – Setting up Burp Suite

Go to the proxy tab then the options tab. Add a new listener on all interfaces on whatever port you’d like.

Here, we will choose 8080:

  • Click import/export CA certificate > Export > Certificate in DER format
  • Choose a path and name it anything with a .cer extension
  • Click Next

Note

We will use the name Burp_cert.cer as an example for this tutorial.

Step 2 – Upload and install the Burp Suite Certificate

Method 1 – Install as a user certificate

  1. Spin up an instance.
  2. Drag’n drop the Burp_cert.cer file you generated to the device display.
  3. Go to Android Settings and search install a certificate. In the results, click Install certificates from SD Card and select CA certificate. Click install anyway to bypass the warning.
  4. Navigate to /sdcard/Download and click on Burp_cert.cer.
  5. If you are using Android 9 or below, you may be requested to set a secure lock screen. Comply and set a lock:
Android Encryption & credentials options screen

To verify whether the certificate is properly installed, go to Android settings, search and click Trusted credentials. You should see the certificate in the USER tab:

Method 2 – Install as a system-level trusted CA

Warning

This method is for advanced users and may break the Android system of the virtual device: it should only be considered as last resort if Method 1 fail. Use at your own risks!

1. Convert the certificate

First, we need to convert Burp certificate into PEM format. Use openssl to convert DER to PEM:

openssl x509 -inform DER -in Burp_cert.cer -out Burp_cert.pem

and output the subject_hash_old:

openssl x509 -inform PEM -subject_hash_old -in Burp_cert.pem |head -1

Then, rename the file with the output hash from the last command. For example, if the hash is 9a5ba575, rename the file as 9a5ba575.0:

mv Burp_cert.pem 9a5ba575.0

2. Install the certificate

Spin up your device and connect it to ADB with gmsaas.

Then, Upload and install the .0 certificate:

# remount the system partition
adb remount
# Upload the certificate
adb push <cert>.0 /system/etc/security/cacerts/
# Change the certificate permissions
adb shell chmod 664 /system/etc/security/cacerts/<cert>.0

For example, with the 9a5ba575.0 certificate:

adb remount
adb push 9a5ba575.0 /system/etc/security/cacerts/
adb shell chmod 664 /system/etc/security/cacerts/9a5ba575.0

Then, reboot the device.

After the device reboots, browsing to Settings -> Security -> Trusted Credentials should show the new “Portswigger CA” as a system trusted CA:

Android Trusted credentials page

Step 3 – Save as a Custom Recipe

We recommend saving the device as a custom recipe at this point.

Step 4 – Set Android global proxy to Burp Suite proxy

Important

If the global proxy is still set after saving the device as a custom recipe, or if you save the recipe at this point, Wifi will be unavailable the next time a device is started from this recipe. To avoid this, make sure to unset the global proxy before saving. See Step 5 – Disable global proxy section.

If you haven’t already done it, connect the device to ADB with gmsaas.

Next, use ADB to set port 3333 but you can use any other port as long as it is available:

adb shell settings put global http_proxy localhost:3333

Finally, bind Burp proxy to the device proxy configuration with adb reverse. We setup Burp suite to use port 8080, so we will bind the device pxoxy to this port:

adb reverse tcp:3333 tcp:8080

From there, your instance network should be intercepted by Burp suite.

Step 5 – Disable global proxy

If you need to save the instance, make sure to disable the global proxy before or the Internet connection may be disabled the next time you start it:

adb shell settings put global http_proxy :0

Select Product Portal

SaaS Platform

Access to our SaaS solution and use virtual machines in the cloud on any web browsers.

Or

Or

Desktop Platform

Access to manage your Genymotion Desktop licenses, your invoices and account information.

Select a Cloud provider Marketplace

How to get a quote for multiple Business Licenses?

  1. You need a Genymotion Desktop account. If you haven’t one yet, you can create it here.
  2. After creation and activation, or if you already have an account, follow this link.
  3. Add the number of desired licenses to your shopping cart and click “Continue to Billing”
  4. Add a shipping address, or select one if you already created one.
  5.  In the next page, click “Get a quote”:
    Payment details
  6. A quote will be automatically generated in PDF format.

Genymotion Device Image for Cloud providers
- Private Offer -

Genymotion Device On-premise
- Contact Us -

Genymotion SaaS
- Increase Maximum Simultaneous devices -

Genymotion SaaS Annual Plan
- Get a Quote -

Genymotion SaaS Premium Plan
- Get a Quote -

Personal Use - Free

Genymotion Desktop for personal use is not suitable for trial or POC: you will not get any assistance and some features will be disabled. If you have already selected “personal use” and wish to get a trial license, please contact our Sales at [email protected].

Technical support is not available with Genymotion Desktop free edition for personal use. For more details, please refer to Genymotion conditions of use (Personal Use).

The following features are not available in personal use mode:

Follow these steps to get Genymotion Desktop and activate personal use mode:

  1. Go to the Download page and get the latest version for your system.
  2. Follow the instructions from Genymotion Desktop quickstart guide to install Genymotion Desktop.
  3. Launch Genymotion and click CREATE to create an account. You should receive an activation email within an hour. If not, make sure to check your spam.
  4. After activating your account, return to Genymotion and log in with your credentials.
  5. Select personal use when prompted.
  6. Read Genymotion Desktop quickstart guide carefully to setup Genymotion for your needs.

Individual Offer Order

This offer is strictly reserved for personal use or individual workers (freelancers).

Educational Offer Order

The Educational subscription is restricted to:

  • schools, teachers or students who wish to use Genymotion Desktop for tuition
  • students who wish to use Genymotion Desktop for a school project

It is subject to valid proof (student card, teacher card, etc.)