Fix BURP SSL on Genymotion Android 8.0

TL;DR

BURP Suite often fails to connect via SSL to Genymotion virtual devices running Android 8.0 (API 26). This is usually due to missing or outdated root certificates in the device’s trust store. This guide shows you how to import the BURP CA certificate into your Genymotion Android 8.0 VM.

Solution

1. Download the BURP CA Certificate:
   • Open BURP Suite.
   • Go to Proxy > Options.
   • Select the ‘CA certificate’ tab.
   • Click ‘Save CA certificate’. Save it as a .cer file (e.g., burp_ca.cer). Make sure you save this somewhere easy to find!
2. Start Genymotion and your Android 8.0 VM:
   • Ensure the virtual device is fully booted.
3. Install the Certificate via ADB (Android Debug Bridge):

   ADB allows you to communicate with the emulator from your computer.

   • Check ADB Installation: Open a command prompt or terminal and type adb devices. If ADB isn’t recognised, you need to install it (see ‘Troubleshooting’ below).
   • Push the Certificate: Use the following command to copy the certificate to your virtual device:

     adb push burp_ca.cer /sdcard/Download/

4. Install the Certificate on the Android Device:
   • On the Genymotion VM, open ‘Settings’.
   • Go to ‘Security’ > ‘Encryption & credentials’.
   • Select ‘Install a certificate’. You might need to tap several times to find this option.
   • A warning may appear about unknown sources. Accept it.
   • Browse to the /sdcard/Download/ folder and select burp_ca.cer.
   • You’ll be prompted to give the certificate a name (e.g., ‘BURP CA’). Tap ‘OK’.
5. Verify Installation:
   • Go back to ‘Security’ > ‘Encryption & credentials’.
   • Select ‘Trusted credentials’.
   • Under ‘User’, you should see the certificate you just installed. Ensure it is enabled (ticked).
6. Restart Genymotion VM:

   A full restart of the virtual device is often necessary for the changes to take effect.

7. Test BURP Connection:
   • Reconfigure your Android 8.0 VM’s proxy settings in Genymotion (Settings > Wi-Fi > Long press on your network name > Modify network). Ensure the proxy host is set to 127.0.0.1 and the port to 8080 (or whatever port BURP Suite is listening on).
   • Open a web browser within Genymotion and try accessing a website through BURP Suite. Check that traffic appears in your BURP Proxy history.

Troubleshooting

• ADB Not Recognised: If adb devices doesn’t work:
  • Ensure you have the Android SDK Platform-Tools installed. You can download it from the official Android Developer website.
  • Add the platform-tools directory to your system’s PATH environment variable. This allows your command prompt or terminal to find the adb executable.
  • Restart your command prompt or terminal after updating the PATH.
• Certificate Not Showing: If the certificate doesn’t appear in ‘Install a certificate’, try restarting Genymotion and repeating step 3.
• Still No Connection: Double-check that your Android VM’s proxy settings are correct (host: 127.0.0.1, port: 8080). Also, ensure BURP Suite is running and listening on the configured port.