PCAPdroid is a privacy-friendly open source app which lets you track, analyze and block the connections made by the other apps in your device. It also allows you to export a PCAP dump of the traffic, extract metadata and much more!

PCAPdroid simulates a VPN in order to capture the network traffic without root. It does not use a remote VPN server. All the data is processed locally on the device.

Features:

- Log and examine the connections made by user and system apps
- Extract the SNI, DNS query, HTTP URL and the remote IP address
- Inspect HTTP requests and replies thanks to the built-in decoders
- Inspect the full connections payload as hexdump/text and export it
- Decrypt the HTTPS/TLS traffic and export the SSLKEYLOGFILE
- Dump the traffic to a PCAP file, download it from a browser, or stream it to a remote receiver for real time analysis (e.g. wireshark)
- Create rules to filter out the good traffic and easily spot anomalies
- Identify the country and ASN of remote server via offline db lookups
- On rooted devices, capture the traffic while other VPN apps are running

Paid features:

- Firewall: create rules to block individual apps, domains and IP addresses
- Malware detection: detect malicious connections by using third-party blacklists

If you plan to use PCAPdroid to perform packet analysis, please check out the specific section of the manual.

Join the PCAPdroid community on telegram to discuss and receive updates on the latest features.

1. Click the download button to Downloading Page.

2. For Normal APK File, you can direct download the file, or you can choose fast download the file with our Installer.

3. For Speicial file such as XAPK or BAPK, you must to choose fast download the file with our Installer.

4. When you finish the file downloading, you must allow your phone to install the file from unknown resource.

- Fix root capture start in some non-magisk su binaries
- The mitm addon now uses mitmproxy 11
- Include the package name in the CSV output