jump to navigation

Monitor HTTP(s) Traffic with Fiddler on a Windows machine June 24, 2011

Posted by Tournas Dimitrios in Uncategorized.

Security professionals, Network, Web and Windows Administrators and even developers can use Fiddler to investigate their webapp or website codes . Fiddler is a Web Debugging Proxy which logs all HTTP and HTTPS traffic between your computer and the Internet. Fiddler allows you to inspect all HTTP(S) traffic, set break points, and “fiddle” with incoming or outgoing data. Fiddler includes a powerful event-based scripting subsystem. There are add- ons or extensions available for Fiddler which can enhance features.

Fiddler can debug traffic from virtually any application and browsers. As soon as Fiddler is installed on your system, it runs as a proxy and listens at although this port can be changed from Options. It is then added as a proxy to your browser (Internet Explorer, Google Chrome and Firefox tested) and and all traffic gets passed through Fiddler to record, analyze and interpret the traffic. For applications that supports proxy, this proxy address should be amended.

From this any point, any HTTP and HTTPS traffic passes through Fiddler. At this point, you can inspect all requests and responses and also set break points (disabled by default) and then manipulate the Request or Response headers or simply choose from set response headers to complete the request/response transaction .

Fiddler needs the .NET Framework  (v.2 ) to be already installed on your Windows machine . How do you know if this Framework isn’t installed yet on your box ?  Simple answer , Fiddler won’t work🙂 .
Alternatively navigate to this directory to explore which version of the .NET Framework is already installed on your box .
Download Fiddler and watch this 8min video tutorial to get you started .

Alternative solutions : ( The list could be endless )

More info about Fiddler :


No comments yet — be the first.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s