fiddler解决抓包Tunnel to 443 和断点调试

1.下载证书生成工具 {链接：https://pan.baidu.com/s/1d8pItWMivQWBt_yjlKikPA 提取码：nvu1}

2.打开fiddler,选择fiddler脚本跳转到 OnBeforeRequest函数（Fiddler Script > OnBeforeRequest）

3.在该函数结尾的大括号内添加下列代码并保存 (https抓包证书配置正确抓包结果出现Tunnel to 443，加下列代码重新生成证书)

var hosts = 'zkd.me develop.dog';
FiddlerApplication.Log.LogFormat("Logger session {0}, Url: {1}, isHttps: {2}, port: {3}", oSession.id, oSession.fullUrl, oSession.isHTTPS, oSession.port);
if(hosts.indexOf(oSession.host) > -1){
FiddlerApplication.Log.LogFormat("Capture session {0}, Url: {1}, isHttps: {2}, port: {3}", oSession.id, oSession.fullUrl, oSession.isHTTPS, oSession.port);
if(oSession.HTTPMethodIs('CONNECT')){
FiddlerApplication.Log.LogString('create fake tunnel response');
oSession['x-replywithtunnel'] = 'FakeTunnel';
return;
}
if (oSession.isHTTPS){
FiddlerApplication.Log.LogString('switch https to http request');
oSession.fullUrl = oSession.fullUrl.Replace("https://","http://");
oSession.port = 80;
}
FiddlerApplication.Log.LogFormat("Processed session {0}, Url: {1}, isHttps: {2}, port: {3}", oSession.id, oSession.fullUrl, oSession.isHTTPS, oSession.port);
}
FiddlerApplication.Log.LogFormat("Logger session {0}, Url: {1}, isHttps: {2}, port: {3}", oSession.id, oSession.fullUrl, oSession.isHTTPS, oSession.port);

4.菜单栏>tool>Options分别设置抓包https与允许远程主机链接，如图

5.运行fiddlercertmaker.exe，并导出证书(tool>Options>https>Actions>Export Root certificate to Desktop)

6.PC端浏览器删除所有fiddler证书并导入桌面证书到浏览器并信任，移动端设置代理通过浏览器进入http://IP地址:8888下载安装证书并添加到信任

7.重启fiddler与移动端后打开浏览器或者APP进行抓包测试

全局断点

对请求断点： Rules > Automatick Breakpoints > Before Requests

对响应断点： Rules > Automatick Breakpoints > After Requests

断点后可在Requests(请求断点)和Response(响应数据) 对请求和响应数据进行修改然后点击Run to completion释放

单个断点

命令行输入: bpu 接口请求断点

bpafter 接口响应断点

断点某个网站：bpu 域名与 bpafter 域名

调试介绍后记得输入bpu + 回车 or after + 回车取消断点

posted @ 2021-06-08 16:41 yoyolily 阅读(630) 评论(0) 编辑收藏举报

刷新页面返回顶部

fiddler解决抓包Tunnel to 443 和 断点调试