Fiddler uses advanced skills, how to capture packets and modify data? - AutoResponder redirection

News 2023-06-12 07:40:31 views: null

"  Introducing Fiddler's AutoResponder redirection feature. "

Fiddler is very powerful. It can not only capture messages, but also construct messages. This article continues to introduce the functions of fiddler. This time, the functions are related to constructing messages. They are used to answer the questions in the title, that is, the methods of modifying data, including The construction of the request and the construction of the response, the former is used to deceive the server and obtain data from the server, and the latter is used to deceive the client and give the client the data we want.

These two functions are very useful for MITM. Of course, they are also useful for implementing some tricks. It is recommended that you learn and create a lot of gameplay.

Using a lot of search tools, you will find that fiddler related searches are mostly "fiddler modification amount", "fiddler change gambling", "fiddler recharge gambling", "fiddler capture and recharge", etc. It seems that some gambling sites have appeared this kind of Cai Cai's loophole, isn't it interesting?

The previous introduction to the use of fiddler can refer to the following articles:

HTTP traffic analysis using Fiddler

Use Fiddler to capture mobile phone HTTP traffic packets

Fiddler usage skills: powerful data text encoding and decoding functions

Fiddler Tutorial: What should I do if I grab a bag with a lock? Introduction to HTTPS packet capture.

Back to the center of this article, how to capture packets and modify data? Of course, the AutoResponder redirection function and the Composer package creation function are used. The AutoResponder redirection function will be explained below.

On the main interface of fiddler, on the right side of the interface, there are many tab pages, which contain the function of redirecting AutoResponder:

The function of this function, literally, is to automatically respond when a request passes by. In detail, when we use fiddler to capture packets, fiddler will respond to HTTP or HTTPS request data according to the rules in AutoResponder configured data.

Doesn't it look great?

Really great.

Now let's see how to use it.

Open the AutoResponder interface, and you will see several selection boxes and buttons above. See what it means, which is the global setting for redirection:

We can set the rule to take effect once or always.

Below, there is a dropdown and an input box, and this is where the rules are configured:

It can be seen that the functions are quite rich, you can redirect to other URLs, or you can directly respond to specific data, the degree of freedom is quite high, and it is very convenient.

In the middle is a list of configured rules.

The focus of the redirection function is to configure the rules. The following uses examples to introduce specific rules.

The first example is an example of jumping to another URL. Let’s take Baidu as an example. When visiting https://www.baidu.com, it will directly jump to Netease https://www.163.com.

The rules are as simple as this:

Of course, you need to save, save the configuration, enable rules, and you can see the final rules in the rule list on fiddler after saving.

Before the rules take effect, open the normal Baidu like this:

After the rule takes effect, open it and jump to NetEase:

Is not it simple.

Look at the generated message, this is a direct request without a jump.

There is another rule:

*redir:http://www.example.com

It is a 302 redirect.

The second example is to respond with constructed data. Still taking visiting Baidu as an example, we construct an HTML page, and when visiting https://www.baidu.com, respond with this constructed page. The content of the constructed response file is roughly like this, and everyone is free to play:

When configuring the rules, choose this to import the constructed HTML file, and still save the rules to make them take effect:

In this way, when visiting the Baidu homepage, this page appears:

The message captured by fiddler is as follows:

After reading the above introduction, you probably have some understanding of the autoresponser function. If you use it in depth, you can have many powerful functions.

Everyone can go to the actual operation to deepen the learning effect.

Long press to follow.

Click "Watching" to share with friends↘

Guess you like

Origin blog.csdn.net/yeyiqun/article/details/104111922
Recommended
The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!
Ranking
Getting the basic concepts of ROS + catkin Profile
Spring Learning (2) --- Assembling Beans in the IoC Container
js to get the src attribute of the image regularly
STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud
Short video learning - 3, pandas simple use of pivot_table
Print directory of project configuration log, output log
Understand the difference between vi and vim in Linux in 3 minutes
1 + x certificate Web front-end development HTML5 special exercises
mangodb save and insert the difference
7-1 Family tree processing (50 points) (binary tree solution)
Daily
More
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)

Code World

© 2018 codetd.com