Hi,

 I am developing an app in WPF that uses REST calls and response of REST appears on WPF form.

I wan to capture this traffic of REST calls in a log file.

For Http,It is working fine.

But in case of Https,It is now working properly.There are two Issue

For Https I using approach as suggested in link

http://weblog.west-wind.com/posts/2014/Jul/29/Using-FiddlerCore-to-capture-HTTP-Requests-with-NET#AddingFiddlerCertificateswithFiddlerCore​

1) Every time Fiddler start it changes LAN setting from "Automatically detect settings" to  "Use a proxy server.......".

2) If I made some request it says

Request Method: 
PUT
The underlying connection was closed: An unexpected error occurred on a receive.

and Fiddler log like

ONNECT http://mytestapp.cloudapp.net:443 HTTP/1.1

Host: mytestapp.cloudapp.net

A SSLv3-compatible ClientHello handshake was found. Fiddler extracted the parameters below.

Version: 3.1 (TLS/1.0)
Random: 55 A6 4B 5F C1 4F A3 2A 10 90 E0 53 3A BA 14 4E 32 BE 97 ED EB 9A 2C E4 CB 49 A9 E4 7A 9B 77 CC
"Time": 8/30/2020 6:45:01 PM
SessionID: 21 46 00 00 74 14 CC B0 49 74 2E 55 2E C9 16 29 C4 AB F2 55 72 78 B5 11 84 63 DB F4 B9 4F 65 E8
Extensions: 
renegotiation_info 00
server_name mysslrpcloudservice.cloudapp.net
elliptic_curves secp256r1 [0x17], secp384r1 [0x18]
ec_point_formats uncompressed [0x0]
SessionTicket empty
Ciphers: 
[002F] TLS_RSA_AES_128_SHA
[0035] TLS_RSA_AES_256_SHA
[0005] SSL_RSA_WITH_RC4_128_SHA
[000A] SSL_RSA_WITH_3DES_EDE_SHA
[C013] TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA
[C014] TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA
[C009] TLS1_CK_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
[C00A] TLS1_CK_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
[0032] TLS_DHE_DSS_WITH_AES_128_SHA
[0038] TLS_DHE_DSS_WITH_AES_256_SHA
[0013] SSL_DHE_DSS_WITH_3DES_EDE_SHA
[0004] SSL_RSA_WITH_RC4_128_MD5

Compression: 
[00] NO_COMPRESSION



Response Headers :HTTP/1.1 200 Connection Established
FiddlerGateway: Direct
StartTime: 17:30:31.982
Connection: close


Response Body :

What is the problem?Plz help.​​

I am trying to apply osession.request-trickle-id values to SOAP and REST requests made via HTTPS from ReadyAPI. I'm making these requests within the company network.

The setting appears to be ignored when I make ReadyAPI requests.

 I am definitely routing ReadyAPI traffic through Fiddler - I can see the requests in Fiddler. 

 If I simply browse the Web, however, it's easy to see that the request-trickle-id value IS being applied.

 I will say that the ReadyAPI requests I'm making are very tiny, but even huge osession.request-trickle-id values have no effect.

 Thoughts? thanks. 

Good day!

I develop personal ads blocker on Fiddler.Core. My solution requires two times longer than classic Fiddler or clean browser to complete load page. After profiling problem founded at Fiddler.DefaultCertificateProvider.CreateCert what take 50% resources of solution. Fiddler.DefaultCertificateProvider.CreateCert called by Fiddler.DefaultCertificateProvider.LoadOrCreateCertificate. My certificate installation code is:

#region Certificate preparation
        /// <summary>
        /// Save and restore root cert and appropriate settings
        /// </summary>
        private void PrepareCert()
        {
            // check root cert
            if (CertMaker.rootCertExists()) return;

            // generate root cert
            if (!CertMaker.createRootCert())
                throw new InvalidOperationException("Cant create root certificate");

            // install root cert
            if (!CertMaker.trustRootCert())
                throw new InvalidOperationException("Cant trust root certificate");
        }
        #endregion

This code called on application startup only.

My Fiddler.Core from NuGet.

How to fix this problem?

Hello,

I am using Fiddler Web Debugger (v2.5.1.2).  I am new to fiddler tool. i have question on capturing the request.

In application, when i choose record in table grid and click button on panel then it will prompt for confirmation. if i click confirm button then request will sent and processed.

here basically i want to capture the entire request was built/sent to server when i click confirmation pop up.


i only see like below in Request headers, could you help me on this.

POST /xx/outbound/ui/abc.jsflps HTTP/1.1

Appreciate your inputs

Hello!

I've some troubles using fiddler.

I've installed new version of fiddler. Windows 8.1, 64bit.

Fiddler runs fine, I want to capture https traffic from my android device. There is also installed fiddler root certificate, using ipv4.fiddler:8888.

I'm using app in android, not browser. 

I'm opening app, it requires authentication, after filling login and password, I try to log it on, but fiddler log shows up this error: "!SecureClientPipeDirect failed: System.Security.Authentication.AuthenticationException: A call toSSPI failed, see inner exception. "

Need your help.

Thank you!

Hi Team,

is it possible to use FiddlerCore.dll in asp.net application and users browse this application,They should be able to view all traffic(REST details) from their system(either from desktop app or webapp).

Hi,

My name is Nicholas and I am the Product Manager at Acunetix.

Every so often, we come across Acunetix users who are also using Fiddler to test their web applications. So we have implemented support for Fiddler Session Archives (Fiddler exports), which can be used to pre-seed a scan. This is very useful as it gives a head start to the Acunetix Vulnerability Scanner when crawling the web application, and the user might have already logged HTTP requests in Fiddler to parts of the web applications that are not linked to from the main URL.

More information about how to do this can be found at http://www.acunetix.com/blog/docs/how-to-pre-seed-a-crawl-using-a-fiddler-session-archive-saz-file/

I hope you find this Acunetix update useful.

I have a sporadic problem on an HTTPS site that requires a client CAC cert.  Problem started a few months ago.  At any given time, IE will prompt the user (windows security) to select their cert and press OK to continue on.

Problem is - is just keeps re-prompting for the cert - an endless loop when they press ok. It just keeps them prompting to select the cert again over and over.  They have to kill the browser in task manager and restart IE.  I CANNOT automatically re-create this problem on the fly.  It sporadically happens.  Maybe on the first attempt,   May happen in 5 minutes or may take 2 hours, or maybe not for the whole day as the user works in the site.  When this problem has happened to me, i have opened control panel -> Internet options -> and have cleared the SSL state, but it ignores when I select the cert and press ok.  It just keeps prompting me to select a cert.

I am trying to figure out if the the SSL state cache is not being cached, getting dumped, corrupted, network issues, etc. - OR if their is something wrong with the Windows security choose certificate GUI box (Wininet) that is causing the problem.

I have dumped the regular cert that i use for the authentication in the fiddler directory (ClientCertificate.cer), but would like fiddler to allow the windows security GUI to allow me to choose which cert i use (like it does when fiddler isn't running).  Any clues or way i can make fiddler use the windows select cert box (like normal)?

   Thanks,

      Jason

I've been running into some unexpected and strangely consistent HTTP/1.1 504 Fiddler - Receive Failure, and when looking into the response I see a the X-ServerSocket value to be two values: 

X-SERVERSOCKET: REUSE ServerPipe#1321REUSE ServerPipe#384*NEW*

This would seem to imply that the two server sockets were used for the connection, this seems bizarre. Are there conditions where this should happen?

Hi folks,

 I am pretty much new to fiddler. I heard that I can capture custom requests from fiddler so that I can use them in my performance testing tool Load Runner. Is there any settings required in order to generate custom requests?

ex: let's say I am hitting at "http://www.google.com" , so for this, the request which I am getting should be in Custom Request form. something like this..

web_custom_request("allocate", 
"URL=https://www.google.com", 
"Method=POST", 
"TargetFrame=", 
"Resource=0", 
"RecContentType=application/json", 
"Mode=HTML", 
"EncType=application/json; charset=utf-8", 
"Body=
Last);

Please do not hesitate to reach me if any thing is missing.

Thanks in advance,

Kantu