HTTPS Decryption - not working

14 posts, 0 answers
  1. Alan
    Alan avatar
    3 posts
    Member since:
    Jan 2016

    Posted 18 Jan 2016 Link to this post

    I upgraded to v4.6.2.0 and the HTTPS decryption option is causing sites to fail to load in my browser. I have tried disabling and re-enabling decryption without any success. This was working before the upgrade. Does anyone have any suggestions?
  2. Alan
    Alan avatar
    3 posts
    Member since:
    Jan 2016

    Posted 18 Jan 2016 Link to this post

    Apparently I should use the search feature before posting as it seems this problem is not new.

    http://www.telerik.com/forums/firefox-36-0-breaks-fiddler-https-decryption

    However, the suggested fix does not work. As I am running Fiddler 4.6.2 the default cert engine is CertEnroll. However, this still generates wild cards. However, even unchecking the wild card option still causes the browser to break.

    I am running Windows 10 and this issue occurs in both Edge and Internet Explorer.

     
     
  3. Alan
    Alan avatar
    3 posts
    Member since:
    Jan 2016

    Posted 18 Jan 2016 Link to this post

    Apparently not only should I use the Search feature I should read more than one of the returned results.

     The solution is to Reset the certificates (option inside Fiddler) as per Erik's post.

    http://textslashplain.com/2015/10/30/reset-fiddlers-https-certificates/


     
  4. dan
    dan avatar
    8 posts
    Member since:
    Jul 2018

    Posted 27 Jul Link to this post

    I have tried performing all the steps in Erics post to no avail.

    I checked Charles s/ware and that decrpyts the traffic fine but something is obviously messed up with my Fiddler setup.

    The error:

    13:41:36:6284 fiddler.network.https> HTTPS handshake to clients4.google.com (for #65) failed. System.Security.Cryptography.CryptographicException Unspecified error

     

    Any help much appreciate as I love Fiddler.

  5. Daniel
    Daniel avatar
    5 posts
    Member since:
    Aug 2018

    Posted 02 Aug Link to this post

    Hello,

    I'm having the same problem.
    The "Tunnel to" log appears but no connection is made.

    I've reinstalled/reset the certificates and didn't work aswell.

    Any suggestions?

  6. dan
    dan avatar
    8 posts
    Member since:
    Jul 2018

    Posted 02 Aug in reply to Daniel Link to this post

    I fixed my issue following these steps:

    https://www.telerik.com/forums/cryptographicexception-unspecified-error-(decrypting-ssl-traffic)

     

     

  7. Daniel
    Daniel avatar
    5 posts
    Member since:
    Aug 2018

    Posted 03 Aug in reply to dan Link to this post

    Hy Dan,

    I've tried it, but after all steps, once I tick "Decrypt HTTPS traffic", Fiddler hung out for almost 10 minutes.
    Only after that, the "Trust Fiddler Root certificate" showed up.

    I'm thinking that could be a problem with the CertEnroll engine, that is not being able to register or handling with windows certificate store.

    If you have any other suggestion, I'll appreciate.

    Thank you

  8. dan
    dan avatar
    8 posts
    Member since:
    Jul 2018

    Posted 03 Aug in reply to Daniel Link to this post

    Daniel said:

    Hy Dan,

    I've tried it, but after all steps, once I tick "Decrypt HTTPS traffic", Fiddler hung out for almost 10 minutes.
    Only after that, the "Trust Fiddler Root certificate" showed up.

    I'm thinking that could be a problem with the CertEnroll engine, that is not being able to register or handling with windows certificate store.

    If you have any other suggestion, I'll appreciate.

    Thank you

    Then I would suggest uninstalling Fiddler then deleting all Fiddler certificates via the mmc.

    Then run a registry cleaner.

    The reboot and reinstall Fiddler.

    If you're lucky it might clear out whatever certificate issue your machine has.

     

    Good luck,

    Dan

  9. Daniel
    Daniel avatar
    5 posts
    Member since:
    Aug 2018

    Posted 03 Aug in reply to dan Link to this post

    I've done all the 7 steps you suggested in the other post, including the uninstall and certificates exclusion via certmgr.msc.

    Didn't work.

    Thank you anyway.

  10. dan
    dan avatar
    8 posts
    Member since:
    Jul 2018

    Posted 03 Aug in reply to Daniel Link to this post

    If you'd done that successfully you wouldn't have had any fiddler certs on your machine .

  11. dan
    dan avatar
    8 posts
    Member since:
    Jul 2018

    Posted 03 Aug in reply to dan Link to this post

    What's shown in your fiddler log?
  12. Daniel
    Daniel avatar
    5 posts
    Member since:
    Aug 2018

    Posted 03 Aug in reply to dan Link to this post

    dan said:What's shown in your fiddler log?

    Look what happens when I try to access a site (sfchronicles.com:443):

    14:01:02:3486 Fiddler Running...
    14:01:02:3656 Windows 8+ AppContainer isolation feature detected.
    14:01:09:6997 Assembly 'C:\Users\danie\AppData\Local\Programs\Fiddler\CertMaker.dll' was not found. Using default Certificate Generator.
    14:01:09:7127 /Fiddler.CertMaker> Using .‰+˜ for certificate generation; UseWildcards=True.
    14:01:09:7437 /Fiddler.CertMaker> Root Certificate located; private key in container '883cb18f20cdbfe8ccd3f1dac7be62a6_cc80fec9-ba4c-4903-bb4b-12c94ab2f1c6'
    14:01:09:7597 /Fiddler.CertMaker> Invoking CertEnroll for Subject: CN=*.sfchronicle.com, O=DO_NOT_TRUST, OU=Created by http://www.fiddler2.com; Thread's ApartmentState: MTA
    14:06:56:2296 /Fiddler.CertMaker> Finished CertEnroll for 'CN=*.sfchronicle.com, O=DO_NOT_TRUST, OU=Created by http://www.fiddler2.com'. Returning cert

    Please note the time that took to return the crafted certificate for the website.
    It started at 14:01:09 and finished at 14:06:56 - more than 5 minutes.

    And, at left, the "Tunnel to sfchronicles.com:443" stay grayed.

    No clue on what's happening.

  13. Daniel
    Daniel avatar
    5 posts
    Member since:
    Aug 2018

    Posted 03 Aug in reply to Daniel Link to this post

    Dan,

    I got it. I've solve it using Fiddler's Certificate Maker addon (http://fiddler2.com/r/?fiddlercertmaker/)

    Everything is working now!

    Thanks very much for your help

  14. dan
    dan avatar
    8 posts
    Member since:
    Jul 2018

    Posted 03 Aug in reply to Daniel Link to this post

    Glad you sorted it
Back to Top