How to use Fiddller to track requests sent by Windows processes 20140911

Summary point: How to use Fiddller to track requests sent by Windows processes

The cases are as follows:

Requirements: operational tools put forward requirements, the configuration files for each plug-in, synchronized to the operations center encryption, and then transferred to the Operations center decryption, storage to the database

Test Analysis: This need not only to ensure that the client's configuration file and database consistency, and to ensure that the midway is encrypted, so we need to pay attention to the test point two points:

1, the configuration file transfer is encrypted

2. Correctly decrypt encrypted files in the operations center and store them in the database

The above 2nd better check and test, the key is the 1th how to determine the file transfer is encrypted, in order to obtain the transmission of data, we need to obtain the transmission of the packet, then we need to use the tool to keep up with the data, initially we choose Fiddller, but found that the operation and maintenance tools is the C/s structure, and need to track the request is issued by Windows service, Fiddller can not capture, had to study Wireshark, but in a short time, face Wireshark crawl database, analysis is difficult, too professional, this piece of knowledge is still lacking, Finally, we need to find out how Fiddller tracks the requests made by Windows services and summarizes them.

Test Process:

1, on the computer installed fiddler C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config. machine.config file found in the directory;

2. Open the machine.config file and add the following code:

<!--The following section was to force use of Fiddler for all applications, including those running in service accounts -
< system.net>
< defaultproxy
Enabled = "true"
useDefaultCredentials = "true" >
< proxy autodetect= "false" Bypassonlocal= "false" proxyaddress= "http://127.0.0.1:8888" usesystemdefault= "false"/ >
</defaultproxy>
</system.net>

3, open the Fiddller, note the two-point setting,

4, modify the configuration file (see version is "1.0.1.24", synchronization Time is 2min), wait for 2min to start sending data, and then view the Fiddller tracking record

5. Through find (ctrl+f), open the Query box, enter the URL of the request to find (keyword)

6, in the inspectors under the TextView can see the sent configuration file has been encrypted, in the returned information raw can see the version "1.0.1.24"

How to use Fiddller to track requests sent by Windows processes 20140911