Windows 8.1, Fiddler 4.5.0.0

We have our own https application based on WinINet (not a browser application). This has worked successfully with Fiddler until this week.

We now get the following error when connecting to the remote server:

fiddler.network.https> HTTPS handshake to testservices.bacs.co.uk failed. System.IO.IOException The handshake failed due to an unexpected packet format.

Other info from Fiddler:

A SSLv3-compatible ClientHello handshake was found. Fiddler extracted the parameters below.

Version: 3.3 (TLS/1.2)
Random: 55 39 05 98 AA 32 58 40 77 7C 78 67 B5 4C 56 5F B0 6F A3 8B D6 CD 60 EE AE 4E 2C 24 A0 15 8D A4
"Time": 27/10/2050 11:26:29
SessionID: empty
Extensions:
renegotiation_info 00
server_name testservices.bacs.co.uk
status_request OCSP - Implicit Responder
elliptic_curves secp256r1 [0x17], secp384r1 [0x18]
ec_point_formats uncompressed [0x0]
signature_algs sha256_rsa, sha384_rsa, sha1_rsa, sha256_ecdsa, sha384_ecdsa, sha1_ecdsa, sha1_dsa
SessionTicket empty
Ciphers:
[C028] TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

[009F] TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
[009E] TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
[009D] TLS_RSA_WITH_AES_256_GCM_SHA384
[009C] TLS_RSA_WITH_AES_128_GCM_SHA256
[C02B] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[C023] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
[C027] TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
[C014] TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA
[C013] TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA
[003D] TLS_RSA_WITH_AES_256_CBC_SHA256
[003C] TLS_RSA_WITH_AES_128_CBC_SHA256
[0035] TLS_RSA_AES_256_SHA
[002F] TLS_RSA_AES_128_SHA
[C02C] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[C024] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
[C00A] TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[C009] TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[006A] TLS_DHE_DSS_WITH_AES_256_CBC_SHA256
[0040] TLS_DHE_DSS_WITH_AES_128_CBC_SHA256
[0038] TLS_DHE_DSS_WITH_AES_256_SHA
[0032] TLS_DHE_DSS_WITH_AES_128_SHA
[000A] SSL_RSA_WITH_3DES_EDE_SHA
[0013] SSL_DHE_DSS_WITH_3DES_EDE_SHA
[0005] SSL_RSA_WITH_RC4_128_SHA
[0004] SSL_RSA_WITH_RC4_128_MD5

etc....

The SSL certificate was changed last week at the server end.

It was SHA1 (worked with Fiddler) and now is SHA#256 (get the error above).

Is this a configuration problem or something else?

Our application works OK when Fiddler not running.

 

Regards

Ian Patterson

pls hellp

I'm not a tech person, so I'm describing my question in a cumbersome way:

1. I'm using Fiddler to intercept particular HTTPS responses from an APP in my iPhone by using the filter function, those responses contain useful info to me.

2. In order to get those responses I need to swipe my iPhone for like 100 times, so I save all the 100 responses in a SAZ file so that I can replay it later, without swiping my iPhone again for 100 times.

3. But later when I click "Reissue Requests" after loading the SAZ file and selecting all the 100 old responses, the newly generated 100 responses contain data that is inconsistent with what I can see directly from my iPhone screen. I think the problem is that the newly issued requests don't update parameters like timestamp, cookie, etc.

 

Is there a way to automatically update all the parameters when I reissue the old requests stored in the SAZ file, so that the responses are up-to-date and consistent with the real-time data that I can see from the iPhone screen? Basically, I don't want to swipe my screen to manually issue 100 new requests to get the 100 desired responses, and I'm trying to hack a way to automate the data collection process with Fiddler.

 

 

 

Thank you.

Hi! I wasn't able to install Fiddler and I am trying to debug on it. So I wonder where can I find the Fiddlersetup.exe installation logs?

Or even better - Can I specify a directory in the command line such as: FiddlerSetup.exe /S /LOGS=D:\fiddler_tmp\log.txt?

at the first pic the error is shown 
and at the second one  when i tried to fix it 

Hi

I've found that whenever fiddler is running on my PC (most of the time), Office 365 apps are unable to authenticate, for example, word can't access SharePoint 365 documents and OneNote can't sync notebooks stored on my OneDrive or on the SharePoint 365. They just keep prompting for my password. As soon as I close Fiddler, they authenticate and everything works again. Once authenticated, I can run Fiddler again and they keep working for a bit.

Is there anything I can do to Fiddler's settings to get it to ignore Office 365 traffic?

Thanks

hi! i'm trying to capture sessions from chrome but sometimes it captures chrome:17740 and sometimes other number. how do I keep all sessions from chrome?

Hi,

I got below error when launching fiddler for the 1st time:

"---------------------------
Awww, Fiddlesticks!
---------------------------
Fiddler has encountered an unexpected problem. If you believe this is a bug in Fiddler, please copy this message by hitting CTRL+C, and submit a bug report at http://www.telerik.com/forums/fiddler.

Could not load file or assembly 'Xceed.Zip.v5.4, Version=5.4.13572.13590, Culture=neutral, PublicKeyToken=ba83ff368b7563c6' or one of its dependencies. The system cannot find the file specified.

Type: System.IO.FileNotFoundException
Source: Fiddler
   at Fiddler.FiddlerApplication.„€()

   at Fiddler.frmViewer.‹•(String[] ˆ•)

   at Fiddler.frmViewer.‡•(String[] ˆ•)


Fiddler v5.0.20182.28034 (x64 AMD64) [.NET 4.0.30319.42000 on Microsoft Windows NT 6.1.7601 Service Pack 1] 
---------------------------
OK   
---------------------------

"

I'm trying to post binary data using Composer option to my server but the server didn't recognize the request. but the same query working fine with curl and postman.

How to persist the color of Find Sessions? I changed from Yellow to another color and whenever I use the option again, it reverts to yellow.