Fiddler's official website
https://www.telerik.com/download/fiddler
Fiddler principle
When you open the Fiddler tool when you will find that your browser proxy server is added the proxy address 127.0.0.1, then when you access the browser will first initiate a request and then send the request to the server through the proxy server, when when the server returns a response message will go through Fiddler, then sends a response to the browser to display the information again, the principle is so simple, if you want to understand the principles of your mother can find, there are many related articles
Fiddler role
Fiddler can crawl all http, https, and FTP protocol request, the request can manually modify any parameters of the request and response information recording, and playback can be grasped before the request and response
Fiddler interface
1- Menu bar
2- toolbar
3. The list of protocols
Fiddler also request a list of crawl
List Heading Meaning
# Represents a number generated for the session ID Fiddler
Result indicates the response status code
Protocol represents the protocol used for the request
Host represent the host name of the server to accept the request and port number
URl indicates that the request URI path, file and query strings
Body member in response to the number of bytes contained in
Caching value indicating the response body Expires and Cache-Control field
Conten-Type Content Type header represents a type of the response
Process indicates that the local process data stream corresponding windows
Comments indicates a comment session information (default all requests are no annotation information, add your own)
Custom representative value ui-CustomColumn flag set fiddlerscript
Mark before sessionid
4. Options View to display information protocol selected in the list of session
The agreement details the viewing area
On Off Fiddler capture
Click this button to close and open the fiddler proxy server, which is turned on and off fetch requests
Fiddler crawling HTTPS requests
The menu bar click Tools-> options
Pop-up box select HTTPS
勾选Capture HTTPS CONNECTS 和 Decrypt HTTPS traffic选项
保存,即可抓取https请求
Fiddler抓取FTP请求
菜单栏点击Tools->options
弹出框选择Connections
勾选Capture FTP requests选项
保存,即可抓取FTP请求
Fiddler清新发包
不编辑重新发包
1.请求列表选择一个请求,点击工具栏的Replay即可重新发送请求
2.选择需要重新发送的协议,点击右键->Replay
Reissue Requests:重新发送请求。
Reissue Unconditionally: 无条件重新请求此地址。
Reissue Sequentially:循环重新发送
Revisit in IE:使用IE重新发送
编辑后发包
首先选中右侧的Composer
在请求列表中选中需要重新编辑重新发包的协议,鼠标拖拽到Composer栏
选择想要编辑的数据值进行编辑
编辑完成后,点击右侧的Execute发包
设置断点修改Request
1) 点击Rules→ Automatic Breakpoint→Before Request(该方法会对所有的会话断点),选择Rules→ Automatic Breakpoint→Disable消除命令
2) 在命令行中输入命令: bpu www.baidu.com (这种方法只会中断www,baidu.com),在命令行中输入bpu 消除命令
设置断点修改Respones
1) 点击Rules→ Automatic Breakpoint→After Respones (该方法会对所有的会话断点),选择Rules→ Automatic Breakpoint→Disable消除命令
2) 在命令行中输入命令: bpafter www.baidu.com (这种方法只会中断www,baidu.com),在命令行中输入bpafter消除命令
Fiddler过滤会话
点击Filters选项,打开过滤的设置
勾选Use Fitlers,在输入框内输入域名信息,多个域名用分号分开, 支持模糊匹配,然后选择过滤条件
1.表示过滤掉输出框中的域名信息(也就是不抓包)
2.只抓取输入框中的域名
3.抓取输入框中的请求,会被标记
点击Actions,选择Run Filterset now 即可开启过滤
对抓取的请求断点
仍然是在Fitler选项下,选择需要断点的选项
访问系统并抓包时, 可以修改请求的数据,然后点击 Run to Completion把修改后的请求发送给服务器
查看包信息
Statistics信息
Unique Hosts:流量流向的独立目标主机数
Requests started at:接收到的第一个请求的第一个字节的时间点
Responses completed at:发送到客户端的最后一个响应的最后一个字节的时间点
Aggregate session duration:所有选中的session从请求到响应之间的时间和
RESPONSE CODES:选中session中各个http响应码的个数
REQUESTS PER HOST:每个主机的请求数
Inspectors信息
上面时请求信息,下面时服务器的响应信息
Header:报文的首部信息。
TextView:以文本格式查看报文。
SyntaxView:以代码格式查看报文。
Webforms:Web表格,可以直观的查看到报文的值。
HexView:二进制格式查看报文。
Raw:查看整体的信息结构
Cookies:查看Header中的cookies
最后
本博文主要介绍了Fiddler界面的说明,以及一些使用操作,设置断点,过滤请求,修改请求及响应等,比较基础也比较简单,下次再见!