Fiddler app HTTPS grab bag

Source: Internet
Author: User
Tags decrypt
Fiddler Mobile Clutch Principle

Fiddler mobile phone Capture the principle of the same as grasping the web data on the PC, are the fiddler as a proxy, the network requests to go fiddler,fiddler to intercept data, because fiddler act as the role of the middleman, so can decrypt HTTPS

The following starts the Mobile Capture package Setup Tutorial set Fiddler grab bag

file-–> tick capture traffic set up catch https and decrypt HTTPS

Tools-–>fiddler options-–>https-–>capture HTTPS traffic-->decrypt HTTPS Traffic->ignore server Certificate errors

Since we only catch the phone, so here choose from remote clients only

Connections-–>allow remote computers to connect
Because it is a mobile connection agent, tick allow remote computers to connect
Installing the certmaker plugin for fiddler

Because the default certificate does not meet the certificate requirements for Android and iOS, you need to download the Certmaker plugin, double-click Install, and restart Fiddler. Note This step is important, you must use the Certmaker plugin, do not use the default certificate generator, or you cannot catch the package.
set up mobile phone agent phone with PC in same network segment

First of all ensure that the phone and PC in the same LAN
Move the mouse to Onlinein the upper-right corner of the Fiddler to view the PC's ip,192.168.1.106

The phone IP is, 192.168.1.101, with the PC in the same network segment.
set up a mobile agent

Locate the connected wireless, set up the proxy, and the proxy IP is consistent with the IP in online
Phone install root certificate

In the browser, enter http://192.168.1.106:8888, click the bottom fiddlerroot certificateto confirm the installation.

effect

At this point all are set, we look at the effect of the mobile phone web version of QQ, for example, the screenshot is the space "like" the request
Follow-up questions

Similarly, can also crawl mobile phone QQ app version, Alipay, Taobao, etc., but mobile phone QQ some go HTTP2 agreement, so can't catch, this situation will have to use Wireshark grab bag, but after crawling, decryption is a problem.
Wireshark grab the phone QQ app version of the likes request

Cannot catch HTTPS packets

Many netizens ask me, follow the tutorial to come, but can't catch the package, about this question, here unified reply. fiddler can't catch the situation analysis fiddler not support all protocols

Fiddler does not support all protocols, currently known to have HTTP2, TCP, UDP, WebSocket, etc., if the application has gone through the above protocol, then fiddler must be caught.

HTTP2: Because Fiddler is implemented based on the. NET Framework, because the. NET Framework does not support HTTP2, Fiddler cannot crawl HTTP2 certificate write dead in app, Fiddler can't crawl

Fiddler grasping the principle is the man-in-the-middle attack, that is, deceive the client side && deceive the server side, if the HTTPS certificate is written to die in the app, that is, the app does not trust fiddler issued to its certificate, the app only trust their own certificates, Fiddler can not deceive the client, so fiddler will not crawl the package.
Say a few more words, if is oneself development of the app, development debugging convenience, can use similar Wireshark tool to import server certificate, catch packet decrypt.
fix cannot crawl package problem

In addition to the above-mentioned cases where it is not possible to grab a packet, other conditions should be grasped. Here are the steps to troubleshoot and fix the problem. confirm whether you can catch the Baidu homepage of mobile browser

Because Baidu is HTTPS encryption, so if the configuration is correct must be caught. Note that I am talking about three conditions, mobile && browser && homepage of Baidu homepage , these conditions, all must satisfy.
The Baidu homepage of the mobile browser is like this.
Reinstall Certificate

If not, you can be sure that there is a problem with the configuration. Verify that the fiddler is using the Certmarker plugin and that it is installed on the phone, and reinstall if it is already installed. If you don't work yet, regenerate the certificate, reinstall your computer and phone, and then restart Fiddler. In general, reinstalling the certificate on your phone solves the problem.

Crawl mobile Baidu app landing request effect diagram
Reference

Fiddler Grab bag for iOS

Fiddler grab pack for Android



Reproduced in original text to: http://blog.csdn.net/wangjun5159/article/details/52202059

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.