fiddler#
Tools#
Request interception#
- Global request interception
Enable: Rules->Automatic Breakpoints-> Before Requests
Disable: Rules->Automatic Breakpoints-> Disabled - Intercepting a single website
Enterbpu+ website in the QuickExec input box in the lower left corner to intercept only this websiteEnter
bpuand press Enter to cancel interception
View requests#
The red 🔒 on the left indicates interception, click Run to Completion on the right to allow
The tab bar in the Inspectors window on the right can be used to view the request package in various formats
The sub-tab
Rawcan be used to modify content,
Packet capture process#
Set interception rules> Modify the request package> Allow
Try it out#
- Intercept and modify csdn
Enter bpu www.csdn.net in the QuickExec input box in the lower left corner
Access www.csdn.net in the browser
The red 🔒 on the left indicates interception
-
Modify the Chrome version number to 100 in Raw and then allow
-
View in the browser
Open the inspection by pressing ctrl+shift+u in the browser, select the Network tab
Above the filter, click to clear previous content, click the left list to view detailed request information
- View in fiddler
View in the right header
Displayed as Chrome/100.0.0.0
In fiddler, right-click the request that has been allowed and select Select> child Requests to select sub-requests
HTTP#
HTTP format#
| key | Explanation | Related |
|---|---|---|
| Main | ||
| Host | Corresponds to the web name and port number in the URL | Capture and modify host 127.0.0.1 |
| User-Agent | The name of the client browser | User-Agent List |
| Cookie | The browser uses this attribute to send cookies to the server | Enter javascript:alert (document. cookie) in the browser console to view/modify cookies to bypass authentication |
| Referer | Indicates the URL of the web page that generated the request | Bypass-related |
| Others | ||
| Content-Type | Used to indicate the content type of the request | |
| Accept-Charset | Indicates the character encoding that the browser can accept | |
| Accept-Encoding | Indicates the encoding method that the browser can accept | |
| Accept | Indicates the MIME file format that the browser or other client can accept | |
| Accept-Language | Indicates the language that the browser can accept, such as en for English | |
| Connection | Used to tell the server whether to maintain a fixed HTTP connection |
HTTP methods#
| Method | Function |
|---|---|
| GET | Retrieve resources |
| POST | Transmit resources |
| PUT | Update resources |
| DELETE | Delete resources |
| HEAD | Get header information |
The commonly used ones are GET and POST. GET will be displayed after the URL with a "?" at the beginning, separated by "&", transmitted in plain text, not suitable for submitting sensitive passwords, and there is also a limit on the size of the data
POST does not, file upload, passwd is generally submitted using POST
HTTP status codes#
| Status Code | Purpose | Detailed Explanation | Related |
|---|---|---|---|
| 1xx | Informational | Indicates that the request has been received and processing continues | |
| 2xx | Success | Indicates that the request has been successfully received | |
| 3xx | Redirection | The request is complete, but further action is required | ctfhub web 302 redirect |
| 4xx | Client Error | The request has syntax errors or cannot be fulfilled | |
| 5xx | Server Error | The server encountered an error while processing the request |