Can't capture https from Facebook. Used to work :(

11 posts, 0 answers
  1. Herb
    Herb avatar
    1 posts
    Member since:
    Apr 2016

    Posted 20 Apr 2016 Link to this post

    Been using Fiddler for awhile.  It's an amazing program.  I'm no longer able to capture https traffic from the Android Facebook app.  I've read all the threads and searched all around for a solution.  I've seen discussions on ssl pinning, killswitch, etc.  I've used proxydroid in the past, as well.  Does Facebook now have this certificate pinning issue or is there another workaroud available.  It used to work great.  I would rather test on a non-rooted device.  Thanks.
  2. Tsviatko Yovtchev
    Admin
    Tsviatko Yovtchev avatar
    538 posts

    Posted 25 Apr 2016 Link to this post

    Hello,

    What changed between the moment you could capture traffic and the moment you could not? Did you update Fiddler? Did you change something else in your setup? Which version of Fiddler are you running now?

    Regards,
    Tsviatko Yovtchev
    Telerik
    Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
  3. Иван
    Иван avatar
    5 posts
    Member since:
    Dec 2016

    Posted 07 Dec 2016 Link to this post

    Same here. Used Fiddler for a while with other applications and everything worked great. The only app that I can't decrypt is Facebook with it's tls1.2. Any ideas how can I do it?
  4. Tsviatko Yovtchev
    Admin
    Tsviatko Yovtchev avatar
    538 posts

    Posted 07 Dec 2016 Link to this post

    Hi,

    TLS 1.2 is off by default in Fiddler (there were many buggy implementations so Fiddler negotiated for lower protocol version by default). You can switch it on by adding it to the Protocols list in the HTTPS tab of Options.

    Regards,
    Tsviatko Yovtchev
    Telerik by Progress
    Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
  5. Иван
    Иван avatar
    5 posts
    Member since:
    Dec 2016

    Posted 07 Dec 2016 in reply to Tsviatko Yovtchev Link to this post

    Thanks for your fast reply.
    It's enabled: "ssl3;tls1.0;tls1.1;tls1.2"
    And I recreated certs with BCCertMaker.BCCertMaker and updated them both at PC and Emulator.
    Btw, same with my iOS. Can't connect if using Fiddler.
  6. Иван
    Иван avatar
    5 posts
    Member since:
    Dec 2016

    Posted 12 Dec 2016 Link to this post

    Any ideas? :(
  7. mike
    mike avatar
    2 posts
    Member since:
    Apr 2017

    Posted 16 Apr Link to this post

    Same error here. Can't browse to Facebook using iOS 10, on iPad Pro 9.7", Telerik Fiddler Web Debugger v4.6.20171.9220
    .NET 4.6.2 WinNT 6.1.7601 SP1, 

    Enabled TLS 1.2 as per the advice above.

    Still "Safari cannot ..." error on the iOS screen.

     

  8. mike
    mike avatar
    2 posts
    Member since:
    Apr 2017

    Posted 16 Apr in reply to mike Link to this post

    Ah, forgot to mention, I did not upload a cert to iOS. 

    When I connect to it with ipv4.telerik:8888, it suggests to trust *.google.com. Not sure if it is ok or not. 

  9. Tsviatko Yovtchev
    Admin
    Tsviatko Yovtchev avatar
    538 posts

    Posted 20 Apr Link to this post

    Hi,

    You should have Fiddler Root Certificate installed on your IOS device. If it is IOS 10.3 could you also check out whether in  Settings > General > About > Certificate Trust Testings that certificate has full trust enabled?

    Regards,
    Tsviatko Yovtchev
    Telerik by Progress
    Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
  10. Иван
    Иван avatar
    5 posts
    Member since:
    Dec 2016

    Posted 15 Aug Link to this post

    Got some progress. Facebook is using so-called 'SSL pinning' and validate cets that is used by the system. I'v disabled it at my IOs device (jailbreak needed) and now Facebook app works, but Fiddler still can't capture it's traffic. No requests, empty window :(
  11. Alexander
    Admin
    Alexander avatar
    162 posts

    Posted 22 Aug Link to this post

    Hi Ivan,

    If there are no request at all this starts to sound like Fiddler is not set as proxy properly. Is it capturing HTTP? If yes, it should be capturing at least the CONNECTs, which travel on HTTP.

    Regards,
    Alexander
    Progress Telerik
    Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Back to Top