It would be great to have an option in the textWizard to convert an epoch date to a human-readable date.
Like: 1530417600 to "GMT: Tuesday 13 August 2019 08:32:48"
It would be great to have 2 options:
- convert epoch time to human readable time (GMT timezone)
- convert epoch time to human readable time (Local timezone)
Thanks for creating one of the most useful tools ever!
This is a feature that's present in both the Firefox and Chrome dev tools, and it's incredibly useful. Fiddler is already great, and that would make it so much better :-)
I find having Capture on when you start Fiddler a pain since almost always one of the first things I have to do is turn it off. I'd like the option to just have it off on startup.
I had request with json body, after exporting to curl, looking at the batch file, i didn't see the body part of the request
When Fiddler generates a certificate based on the original server certificate (using oSession["X-UseCertCNFromServer"]), it doesn't include all ServerAltNames from the original certificate.
WebSockets offer a mechanism for doing compression of messages. Fiddler's WebSocket Inspector should provide a simpler means of viewing such content. The mechanism looks to be a simple DEFLATE operation: https://tools.ietf.org/html/rfc7692
Fiddler is a great tool & Composer an excellent feature of it. I frequently have to reboot my dev. PC for various reasons (actually it crashes a lot) and loosing my Composer URL history is a painful consequence. Could the URL history be retained between invocations? I use a set of about a dozen different endpoints frequentl, so a history size of 12-20 would likely be enough.
It would be even better if the last used request header and/or body and/or type (POST/GET/..) and/or Protocol (HTTP/1.1 etc.) for each URL could also be saved but perhaps that is asking too much.
Bless you for making this tool.
A simple change request: when I navigate, using Fiddler, to a page that has an untrusted https certificate, I get the popup from Fiddler warning me of the same. I want to get this popup, I don't want to disable it. However, when I click "Yes" on the popup, the main Fiddler window is brought into front, on top of my browser. My environment has a lot of self signed certificates in use on non-production systems, so this is happening quite often.
I propose the popup should work as now, but clicking on the popup should not bring the main Fiddler window up, in case it was minimized or under other windows.
Thanks a lot for your great work on the program.
Fiddler is great but the composer tab really needs some love. For example, it could do with text manipulation features from other applications - double click selects a chunk of text, but it doesn't appear to be aware of common symbols like : ? # " ' ; etc, instead it highlights up to the next space. If i were to do this in vs code or notepad++ it would be more intelligent about delimiters and highlight the portion before the : or inside the " ".
Pressing tab inside the editors moves to the next editor - this seems counter intuitive in this context as you'd expect the editor to insert a tab rather than move you to another field.
I've been using fiddler for years and this has always bugged me. I normally edit the request in another application and paste it in, but it'd be great if i could do some basic editing in fiddler itself. It shouldn't be full ide-mode, but a little bit of help would be appreciated.
Simple things that would make this much better:
Running into more and more issues where the end user are authenticating via a smartcard. If the issue is after the initial handshake then we may be able to turn on Fiddler after the authentication and everything is okay. If the issue is specifically to do with the authentication or authentication screens then we are stuck and have no tool to use to debug the issue, especially when it may involve multiple processes.
With appropriate new settings in the Fiddler Options, could the socket connection on a TLS send certificate challenge call the appropriate API to use the SmartCard reader as well as challenge for a pin/biometric instead of reading from a certificate.cer file?
I find myself applying the same filters again and again on each launch of Fiddler (I mean the filters listed below the list of requests). I think it would be really great if you could allow the restoration of previously applied filters (e.g. by having a save/load filters option). Also, allowing to filter out by "Request Method" would be great too. Congratulations on this tool, by the way. It is really great. :)
Websocket monitoring is such a cool feature in fiddler. What i´m missing is the possibility to export all messages sent and received via the websocket.
In Wireshark i would associate that functionality with "Follow TCP stream".
The reason behind:
I want to search within the websocket communication for certain id´s patterns etc. This is currently not possible as every message is handled separately in fiddler.
What i would expect:
Beeing able to export selected or all messages in the WebSocket pane. (one could think of adding "received","sent" and a timestamp between the messages with a certain beginning to be able to filter those messages later.)
I would call the fact that:
- "Save" - "Selected Sessions" "as Text or ZIP" is only saving the websocket HTTP upgrade request together with the response but without the websockets payload
Or i am missing something. Comments welcome...
I would like a way to block all transfers made internally by Fiddler unrelated to what is being proxied because it disrupts my tests. I am using Fiddler in test cases where I need the data to be limited to what I'm sending through Fiddler. Every time Fiddler is started it makes one or more connections to fiddler2.com. For example http://fiddler2.com/Banners/BannerVersion.txt and also there's a survey connection sometimes as well. Those requests are redirected most of the time to a cloud server. I have to use various VM images to run some of the tests and I see it a lot in the packet captures. The update check I have blocked in the registry where I set BlockUpdateCheck to True. I could ignore fiddler2.com I suppose. Regardless I don't like it there is SSL traffic I can't account for or decrypt, and even if I could it would still be noise disrupting the data I need to check.
I found a preference fiddler.banners.showdefault and fiddler.telemetry.AskPermission but I'm not sure if they relate.
On a somewhat related point consider an option to disable telemetry, refer to Fiddler Script Editor disable internet access