Platform Guides¶
friTap supports multiple platforms and operating systems. This section provides detailed platform-specific guides covering setup, configuration, and best practices for each supported platform.
Supported Platforms¶
Desktop Platforms¶
| Platform | Status | Guide | Key Features |
|---|---|---|---|
| Linux | ✅ Full Support | Linux Guide | Native OpenSSL/GnuTLS, BPF capture, containers |
| macOS | ✅ Full Support | macOS Guide | Secure Transport, Network.framework, Apple Silicon |
| Windows | ✅ Full Support | Windows Guide | Schannel, .NET Framework, UWP apps |
Mobile Platforms¶
| Platform | Status | Guide | Key Features |
|---|---|---|---|
| Android | ✅ Full Support | Android Guide | BoringSSL, Java SSL, root required |
| iOS | ✅ Full Support | iOS Guide | Secure Transport, jailbreak required |
Quick Platform Selection¶
Choose Your Platform¶
For Desktop Applications: - Linux: Best for server applications, command-line tools, and development environments - macOS: Ideal for macOS applications, Safari, and Apple ecosystem apps - Windows: Perfect for Windows applications, .NET software, and enterprise environments
For Mobile Applications: - Android: Comprehensive Android app analysis with root access - iOS: iOS app analysis requiring jailbroken devices
Platform Comparison¶
Feature Matrix¶
| Feature | Linux | macOS | Windows | Android | iOS |
|---|---|---|---|---|---|
| Native SSL Libraries | OpenSSL, GnuTLS | Secure Transport | Schannel | BoringSSL | Secure Transport |
| Root/Admin Required | Yes | Yes | Yes | Yes | Yes (Jailbreak) |
| Full Packet Capture | ✅ | ✅ | ✅ | ✅ | ✅ |
| JSON Output | ✅ | ✅ | ✅ | ✅ | ✅ |
| Pattern Hooking | ✅ | ✅ | ✅ | ✅ | ✅ |
| Live Analysis | ✅ | ✅ | ✅ | ✅ | ✅ |
| Spawn Mode | ✅ | ✅ | ✅ | ✅ | ✅ |
Installation Complexity¶
| Platform | Complexity | Prerequisites | Notes |
|---|---|---|---|
| Linux | Low | Python, pip | Most straightforward installation |
| macOS | Medium | Xcode tools, BPF permissions | SIP considerations |
| Windows | Medium | Visual Studio Build Tools | Antivirus considerations |
| Android | High | Root, frida-server, ADB | Device-specific setup |
| iOS | High | Jailbreak, SSH/USB setup | Limited to jailbroken devices |
Getting Started by Platform¶
Linux Quick Start¶
# Install dependencies
sudo apt update && sudo apt install python3 python3-pip
# Install friTap
pip3 install fritap
# Basic usage
sudo fritap -k keys.log --pcap traffic.pcap firefox
macOS Quick Start¶
# Install Homebrew and dependencies
brew install python@3.11
# Install friTap
pip3 install fritap
# Configure BPF permissions
sudo chmod 644 /dev/bpf*
# Basic usage
sudo fritap -k keys.log --pcap traffic.pcap Safari
Windows Quick Start¶
# Install Python from python.org or Windows Store
# Install friTap
pip install fritap
# Run as Administrator
fritap -k keys.log --pcap traffic.pcap chrome.exe
Android Quick Start¶
# Setup device with root and frida-server
adb devices
adb shell su -c "/data/local/tmp/frida-server &"
# Basic usage
fritap -m -k keys.log --pcap traffic.pcap com.example.app
iOS Quick Start¶
# Setup jailbroken device with frida
# Install Frida via Cydia/Sileo
# Basic usage
fritap -m -k keys.log --pcap traffic.pcap com.example.app
Platform-Specific Considerations¶
Security Requirements¶
Linux: - Root access for packet capture - BPF permissions for full capture - SELinux/AppArmor considerations
macOS: - Administrator access - BPF device permissions - SIP (System Integrity Protection) considerations - Gatekeeper and notarization
Windows: - Administrator privileges - UAC (User Account Control) - Windows Defender/antivirus exclusions - Windows Firewall configuration
Android: - Root access required - frida-server installation - USB debugging enabled - SELinux permissive mode (some cases)
iOS: - Jailbreak required - SSH or USB connection - Frida installation via Cydia/Sileo - Code signing restrictions
Common SSL/TLS Libraries¶
Linux: - OpenSSL (most common) - GnuTLS - LibreSSL - BoringSSL (Chrome) - NSS (Firefox)
macOS: - Secure Transport (native) - LibreSSL (system) - BoringSSL (Chrome) - Network.framework
Windows: - Schannel (native) - OpenSSL (third-party) - CryptoAPI - .NET Security classes
Android: - BoringSSL (most apps) - Conscrypt - Java SSL libraries - OpenSSL (legacy)
iOS: - Secure Transport (native) - Network.framework - OpenSSL (rare)
Architecture Support¶
CPU Architectures¶
| Platform | x86_64 | ARM64 | x86 (32-bit) | ARM (32-bit) |
|---|---|---|---|---|
| Linux | ✅ | ✅ | ✅ | ✅ |
| macOS | ✅ | ✅ (M1/M2) | ❌ | ❌ |
| Windows | ✅ | ✅ (ARM64) | ✅ | ❌ |
| Android | ✅ | ✅ | ✅ | ✅ |
| iOS | ❌ | ✅ | ❌ | ✅ (legacy) |
Special Considerations¶
Apple Silicon (M1/M2): - Native ARM64 support - Rosetta 2 compatibility for x86_64 apps - Performance optimizations for Apple Silicon
Windows on ARM: - Native ARM64 support - x86 emulation compatibility - Performance considerations
Android Architectures: - ARM64 (most modern devices) - ARM32 (legacy devices) - x86_64 (emulators, some tablets) - x86 (legacy emulators)
Best Practices by Platform¶
Development Environment¶
Linux:
# Virtual environment setup
python3 -m venv fritap_env
source fritap_env/bin/activate
pip install fritap
# System-wide installation
sudo pip3 install fritap
macOS:
# Homebrew-managed Python
brew install python@3.11
pip3 install fritap
# pyenv for version management
brew install pyenv
pyenv install 3.11.0
pyenv global 3.11.0
Windows:
# Virtual environment
python -m venv fritap_env
fritap_env\Scripts\activate
pip install fritap
# System-wide installation
pip install fritap
Security Hardening¶
All Platforms: - Use dedicated analysis systems - Isolate from production networks - Regular security updates - Principle of least privilege
Mobile Platforms: - Use test devices only - Backup device before analysis - Understand legal implications - Document analysis procedures
Troubleshooting by Platform¶
Common Issues¶
Permission Errors: - Linux/macOS: Use sudo for network operations - Windows: Run as Administrator - Mobile: Verify root/jailbreak status
Library Detection Issues: - Check application architecture (32-bit vs 64-bit) - Verify SSL library versions - Use debug mode (-do -v) for diagnostics - Consider pattern-based hooking
Network Capture Problems: - Verify packet capture permissions - Check firewall/antivirus settings - Ensure proper network interface access - Use full capture mode if needed
Performance Considerations¶
Resource Usage¶
| Platform | CPU Impact | Memory Usage | Disk I/O | Network Impact |
|---|---|---|---|---|
| Linux | Low-Medium | Low | Medium | Low |
| macOS | Low-Medium | Low-Medium | Medium | Low |
| Windows | Medium | Medium | Medium-High | Low |
| Android | Medium-High | Medium | High | Medium |
| iOS | Medium-High | Medium | High | Medium |
Optimization Tips¶
All Platforms: - Use targeted analysis instead of system-wide - Limit analysis duration - Use appropriate output formats - Monitor system resources
Mobile Platforms: - Use spawn mode for initialization analysis - Minimize background apps during analysis - Monitor device temperature - Use USB connection for stability
Next Steps¶
Choose your platform and dive into the detailed guides:
- Linux Platform Guide - Comprehensive Linux analysis
- macOS Platform Guide - macOS-specific features and setup
- Windows Platform Guide - Windows analysis and troubleshooting
- Android Platform Guide - Mobile Android app analysis
- iOS Platform Guide - iOS app analysis on jailbroken devices
For advanced features and cross-platform topics: - Pattern-based Hooking - Custom library detection - Common Issues - Platform-agnostic troubleshooting - Examples - Real-world analysis scenarios