We are troubleshooting an issue using Fiddler and wanted to know if Fiddler grabs credentials as part of it's network traffic capture that could be used by others. Obviously, if it's an unencrypted password being sent then that would work, but with encryption and session management, is it possible for someone to utilize credentials seen in the traffic capture to compromise security?