I
I
IdFox2016-04-18 04:27:46
Fiddler
IdFox, 2016-04-18 04:27:46

How to intercept HTTPS traffic through Fiddler?

Hello everyone, this question arose.

I have been using Fiddler for debugging WEB applications for a long time.
I often used HTTPS (previously), i.e. how to set the root certificate to trusted ones, that you need to import your certificates in Mozilla and there you need to import them additionally - I know all this

Recently (toli browsers have become smarter, or something else ...) Mozilla began to pour errors.
It wrote that the site uses an untrusted certificate (although it is in the root ...) - you could add an exception
Then HSTS began to appear on sites more and more often - now Mozilla did not allow adding an exception
Now it generally began to pour "The page you are trying to view , cannot be displayed, since the validity of the received data cannot be verified" well, all in the same vein
Maybe someone uses Fiddler, how is it configured for you?
I can have Fiddler options or settings (so that it is understood as a normal proxy) or so that Mozilla does not look at all certificate errors
You can check it on 2 sites, for example https://ya.ru/ (just HTTPS) and https://xakep.ru/ (HSTS)

Thanks in advance for the hints :)

Answer the question

In order to leave comments, you need to log in

1 answer(s)
D
DevMan, 2016-04-18
@IdFox

I don't use fiddler because I'm on OSX, but I'll try to help.
For sniffing https, I have been using charles for a long time , which also has a win version.
Now I checked both sites: they are sniffed without problems after adding exceptions to the mozilla.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question