Fiddler not working with .Net Core

2 Answers 1316 Views
Windows
Mike
Top achievements
Rank 1
Mike asked on 07 Jul 2018, 06:24 AM

I have a console app that communicates with a number of 3rd party services via http. The original version of the app is developed for the .net Framework and Fiddler is able to successfully all of the https calls that the app makes.

I have ported the app to .Net Core 2.1. Fiddler is not capturing the HTTPS calls made by the .Net Core version of the app.

Any ideas as to why Fiddler is not working with the .Net Core app?

 

Alexandra
Top achievements
Rank 1
commented on 12 May 2020, 01:33 PM

Hi,

We are trying to convert Delphi code to C# .Net Core (using .NET CORE SDK 3.1.101 (x86)) and we want to use Fiddler to capture http requests. Using Fiddler with Delphi code is working, but with C#, not. Fiddler is not capturing the HTTP / HTTPS calls made by the .Net Core version of the app. Can you please help me with some ideas?

Thanks,

Alexandra

Nick Iliev
Telerik team
commented on 15 May 2020, 06:54 AM

Hi Alexandra,

 

As suggested in this forum thread there might be different reasons to not be able to capture traffic from your Net Core application. Try some of the solutions suggested in the linked thread and also check if there are some environment specifics that are related to how the Net Core app is handling the HTTP/HTTPS calls.

 

Regards,
Nick Iliev
Progress Telerik

Progress is here for your business, like always. Read more about the measures we are taking to ensure business continuity and help fight the COVID-19 pandemic.
Our thoughts here at Progress are with those affected by the outbreak.

2 Answers, 1 is accepted

Sort by
0
Alexander
Telerik team
answered on 10 Jul 2018, 11:28 AM
Hello,

It is possible that .NET Core is using WinHTTP instead of WinINET, for which Fiddler is configured as proxy. You can find how to set the WinHTTP proxy manually in this answer. Does this fix the problem?

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Peter
Top achievements
Rank 1
commented on 10 Jul 2018, 09:45 PM

I had similar experience with console app on .Net Core 2.0 but then I switched target framework to Core 2.1 and things magically started to work.

 

I was using this example (Client Credentials flow) to trace OpenID protocol communications: https://github.com/IdentityServer/IdentityServer4.Samples/tree/release/Quickstarts/1_ClientCredentials

Alexander
Telerik team
commented on 11 Jul 2018, 10:55 AM

Hello Peter,

Based on this blog post your experience makes perfect sense. It seems that from .NET Core 2.1 HttpClient does not use WinHTTP anymore and have brand new implementation (simplified explanation, for full detail check the blog post).

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Sristi
Top achievements
Rank 1
commented on 07 Dec 2018, 09:35 AM

Hi Alexander,

I  am using fiddler version v5.0.20182.28034 for .NET 4.5 but it is unable to capture Https services for Microsoft Visual Studio Enterprise 2017. I am using Asp dot net Core and have tried all the above mentioned solutions. Can you please help me with this.Also I have done the certificate setting properly and am getting -(14:43:26:1910 !SecureClientPipeDirect failed: System.IO.IOException Authentication failed because the remote party has closed the transport stream. for pipe (CN=*.msedge.net, O=DO_NOT_TRUST, OU=Created by http://www.fiddler2.com)) in the logs. 

0
Simeon
Telerik team
answered on 19 Dec 2018, 02:18 PM
Hello Sristi,

Firstly, I would like to state that the internals of the HTTPS services for Microsoft Visual Studio Enterprise 2017 are out of my scope. With this said, I believe that it is possible that it could use certificate and public key pinning. If this is true, there is no way for Fiddler to perform a man-in-the-middle attack, to decrypt the traffic, unless you have the certificate with the private key of the service.

Regards,
Simeon
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Tags
Windows
Asked by
Mike
Top achievements
Rank 1
Answers by
Alexander
Telerik team
Simeon
Telerik team
Share this question
or