Highlighted
Contributor.
Contributor.
400 views

Converting .pcap capture to VuGen script

During the conversion of a .pcap file captured from WireShark, I am facing an issue wherein, I can't see all of my requests being generated in form of a VuGen script. I do see a few requests but not all of them. I see a popup stating "The selected capture file contains SSL communications. To allow these communications to be processed during script generation, provide the server-side key files(s) required for decryption."

I am assuming that since I am not providing any key files, that's the cause behind the missing requests. The question being if that's the case, which key files do I provide? Are these key files the ones being used at the servers of application under test (AUT)? What would be the way to go if I don't have access to those files?

Thanks in advance!

0 Likes
4 Replies
Highlighted
Super Contributor.
Super Contributor.

Long process - https://support.citrix.com/article/CTX116557

Work around - I used an android app called http canary to capture ssl traffic and generate the decrypted raw requests/headers/cookies/responses etc. Basically everything you need to create a web custom request.

ref: https://qaperformance.blogspot.com/2019/07/android-native-app-scripting-with.html 

Hope this helps!!!

0 Likes
Highlighted
Contributor.
Contributor.

Thanks @J_Jena. I took a look at it but I still see similar issues as other proxies. I gave all the required permissions (except the ones requiring root, since it's an organization owned device, I am not allowed to root the device.) and installed the required certificates. I didn't put any filter specific to an app, rather I wanted traffic from all the apps. But still I am only able to capture traffic from browsers. Once the proxy/vpn is enabled, just the browsers work and rest other apps like YouTube, Google Maps etc including my AUT, stop working (Error: No Network). Is there anything that I am missing? Or a rooted device is mandatory, to capture native apps traffic?

0 Likes
Highlighted
Super Contributor.
Super Contributor.

Root is not required in http canary app. Hence I mentioned about it. I would put a filter to capture the traffic only for my application that I want to test. Are you testing any native app or any browser based app?
0 Likes
Highlighted
Contributor.
Contributor.

I am testing a native app. As I mentioned, my browsers work just fine. The native apps do not work when the proxy/vpn are active. I am assuming if I move the required certificate from "User" to "System", the native apps might start working. But that'd require root access.

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.