I am having problems decrypting any SSL traffic on my Windows 10 PC.

I have tried Eric's post on resetting certificates to no avail.

I am seeing this on all SSL requests, this one is for the first request to fiddler to check for fiddler updates, for example: 

09:50:02:3744 fiddler.network.https> HTTPS handshake to www.fiddler2.com (for #1) failed. System.Security.Cryptography.CryptographicException Unspecified error

To try and isolate the issue I installed Charles and it is able to decrpyt SSL requests so I dont believe it is a system-wide / local network issue.

Any help much appreciated as Fiddler is such an excellent tool.

Is it possible for me to block a CONNECT session that is using TLS 1.1 or TLS 1.0?

 

I see that I can script 

if (!oSession.HTTPMethodIs("CONNECT")) 
{ 
}

but I'm not sure what to do to determine TLS version inside the if clause.

Hello, i used Fiddler for years and never got any issue, somehow i'm using it for botting in a Discord channel for some experience points, i simply added a rule with a delay of 30000 and sometimes for an obscure reason the request is either pending (this never complete) or this crash just with that error, what can probably be the reason ?

Also cheer up on this software, it's the best HTTP/HTTPS debugger so far and very useful combined with hackish stuff =P.

Hello Guys.!

I have a big problem.

I tryed to capture https packets on Android mobile app using chrome and etc browsers.

But, When I tryed to capture https packets on Android app I got a this pop-up issue.

Could you please fix this issue? 

Eric - you have developed a fantastic product in Fiddler and I hope it has given you the means to spend the rest of your days in comfort and security.

I cannot begin to list the number of times Fiddler has 'saved my sorry ass' as I try to navigate the horrors of Microsoft + HTTP + the Internet + Websites galore.  Despite EVERYTHING - and with the aid of Fiddler - I have managed to develop network apps that do just about everything ... but I wouldn't have even got beyond first base without Fiddler.

Its a stupendous product of which you can be justly proud.

 

Kind regards

 

Ray

Hello,

im using chrome, i want to prevent/block fiddler white webview from automatically opened when browser unable to open pages (ex. internet time out)

any ideas how to do it ?

or any idea how to access and edit webviewer script ?

Good day. 

 

I've been trying to capture HTTPS traffic from an Android app running in an emulator(LDPlayer).

Emulator was configured to use Fiddler's proxy and i'm seemingly able to decrypt HTTPS tunnels(pic1), but then i get these logs(pic2) and i guess incomplete responses(pic3). Looks like the problem is in application using wildcard hostname in his requests. What is the most possible cause for this behaviour?

 

Thanks.

Hi!

 

I'm coding an API for Playfab using Game Maker Studio.

Everything worked just fine until one day when the first http request of the API started to take ~30 seconds. I started debugging the API and downloaded Fiddler 4. When I check the "Decrypt HTTPS traffic" option in Tools > Options > HTTPS everything starts to work just fine and the first HTTP request takes 0.7 sec intead of 30. After the first HTTP request everything works correctly whether I am using Fiddler or not. 

Weirdly, every else HTTP (and HTTPS) request works fine when using different backends (calling them using exactly the same code as my API).

Also the Playfab API I'm writing works just fine on my other PCs (but I don't know how rare problem this would be if I would publish my API). Also the http request has no problems when using Postman.

 

I read the "Help! Running Fiddler Fixes My App???" article you wrote. I have the "Connection: Keep-Alive"  in my headers, I'm using HTTP/1.1, I'm not using any proxy expect the one Fiddler provides.

This is the code I've isolated the problem to. I'm using GML (which GameMaker Scripting language, but should be pretty easy to understand).

https://gyazo.com/6051bf168a6ffafd0d947a16c3c0f362

The engine is not open source so I can't see what is happening behing the http_request(), but as I said this code works fine on other computers and every other http_request with different domain works just fine, so that shouldn't be a problem. But otherwise I'm pretty helpless with this :/

Thanks!

Hi, 

 

I used fiddler composer to send a request from windows machine, but I receive 407, I turned on "auto authenticate" in options. So there is what I see in the sessions window:

session1:

GET http://www.example.com/ HTTP/1.1
User-Agent: Fiddler
Host: www.example.com


HTTP/1.1 407 authenticationrequired
Date: Sat, 14 Jul 2018 07:44:18 GMT
Content-Type: text/html
Cache-Control: no-cache
Content-Length: 12629
Proxy-Connection: Keep-Alive
Proxy-Authenticate: Negotiate
Proxy-Authenticate: NTLM


session2:

GET http://www.example.com/ HTTP/1.1
User-Agent: Fiddler
Host: www.example.com
Proxy-Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==


HTTP/1.1 407 authenticationrequired
Date: Sat, 14 Jul 2018 07:44:18 GMT
Content-Type: text/html
Cache-Control: no-cache
Content-Length: 12629
Proxy-Connection: Keep-Alive
Proxy-Authenticate: NTLM
Proxy-Support: Session-Based-Authentication

--------------------------------------------

 

And that's it. How do I make it to go through?

 

Thanks in advance.

Hello,

I'am getting an certificate warning on the latest update.

See picture. What is wrong here?

My previous version was signed by Telerik AD, this update used Telerik EAD?