I should take a look at mine and see what its like. I have a degoogled android phone with fdroid so I don't expect it would be too bad. Is there any way to do it so you see the data before encryption?
I done this recently and almost every app was using certificate pinning, so seeing the actual data was difficult. My sokution in the end was to setup a tiny vm with dnsmasq setup to forward all requests and log then as it does so, then just tail the log. There was remarkably little caching going on in the device so almost every actual trigger a DNS query.
Alternatively setup Pi-Hole for testing.
Microsoft Edge (on Android) was the worst offender, contacting vortex.data.microsoft.com almost constantly, on almost every UI action I made. Other notable were the amount of apps contacting analytics servers in the background, when the app as (from an end user perspective) not even running.
Exactly this. Mitmproxy makes it very simple to download and install the root certificate on your device. Just don’t forget to remove or disable it when you’re done.
