ºÝºÝߣ

ºÝºÝߣShare a Scribd company logo

Fiddler web testing tool

Download as PPTX, PDF
H
HimaniChauhan

Fiddler is a web debugging tool that logs all HTTP and HTTPS traffic between a computer and the internet. It allows users to inspect traffic, set breakpoints, and modify incoming or outgoing data. Fiddler works with many browsers and applications by acting as a proxy. It decrypts HTTPS traffic using a man-in-the-middle technique. Key features include web session inspection, statistics, comparing sessions, and various request/response inspectors.

1 of 33
Downloaded 14 times
FIDDLER PERFORMANCE/STRESS TESTING TOOL COORDINATOR: PRESENTED BY: DR. ANOJ KUMAR HIMANI CHAUHAN CSED,MNNIT ALLAHABAD
TABLE OF CONTENT • WHY WE SELECT FIDDLER • WHAT IS FIDDLER • WHAT CAN FIDDLER DO • KEY FEATURES • HOW DOES IT WORK • WEB SESSIONS • INSPECTORS • STATICS • TIMELINE
WHY WE SELECT FIDDLER • WORKS WITH ALMOST ANY HTTP CLIENT NOT JUST FIREFOX AND IE • CAN INTERCEPT TRAFFIC FROM CLIENTS ON NON-WINDOWS PLATFORMS, E.G. MOBILE DEVICES • SUPPORTS PLUGINS TO ADD EXTRA FUNCTIONALITY • IT WILL PROVIDE SPECIFIC DATA ABOUT ALL THE INTERNET TRAFFIC THAT GOES THROUGH TO THE PC. • ITS USER INTERFACE IS KNOWN TO MAKE IT EASY TO MONITOR HTTP REQUESTS.
WHAT IS FIDDLER • FIDDLER IS A WEB DEBUGGING TOOL WHICH LOGS ALL HTTP(S) TRAFFIC BETWEEN YOUR COMPUTER AND THE INTERNET. • FIDDLER ALLOWS YOU TO INSPECT TRAFFIC, SET BREAKPOINTS, AND "FIDDLE" WITH INCOMING OR OUTGOING DATA. • FIDDLER IS FREEWARE AND CAN DEBUG TRAFFIC FROM VIRTUALLY ANY APPLICATION THAT SUPPORTS A PROXY, INCLUDING INTERNET EXPLORER, GOOGLE CHROME, MOZILLA FIREFOX, OPERA, AND THOUSANDS MORE.
FIDDLER IS… • AN HTTP DEBUGGER • WRITTEN IN .NET2/3.5 • EXTENSIBLE • FREE OF CHARGE • A MUST TOOL FOR EVERY WEB DEVELOPER
WHAT CAN FIDDLER DO? • TRACK HTTP/HTTPS TRAFFIC • INSPECT MESSAGE CONTENT • MANIPULATE REQUESTS AND RESPONSES • EXPORT WEB SESSIONS FOR LATER INSPECTION • OFFER EXTENSIBILITY THROUGH SCRIPT AND CODE
KEY FEATURES • WEB DEBUGGING • WEB SESSION MANIPULATION • PERFORMANCE TESTING • SECURITY TESTING • HTTP/HTTPS TRAFFIC RECORDING • CUSTOMIZING FIDDLER
HOW DOES IT WORK?
WATCHING TRAFFIC • WEB SESSIONS • STATISTICS • INSPECTORS • TIMELINE
LET’S GET STARTED WITH FIDDLER
WEB SESSIONS
KEY INFORMATION • # - AN ID# OF THE REQUEST GENERATED BY FIDDLER FOR YOUR CONVENIENCE • RESULT - THE RESULT CODE FROM THE HTTP RESPONSE • PROTOCOL - THE PROTOCOL (HTTP/HTTPS/FTP) USED BY THIS SESSION • HOST - THE HOSTNAME OF THE SERVER TO WHICH THE REQUEST WAS SENT • URL - THE PATH AND FILE REQUESTED FROM THE SERVER • BODY - THE NUMBER OF BYTES IN THE RESPONSE BODY
CONTINUED... • CACHING - VALUES FROM THE RESPONSE'S EXPIRES OR CACHE-CONTROL HEADERS • PROCESS - THE LOCAL WINDOWS PROCESS FROM WHICH THE TRAFFIC ORIGINATED • CONTENT-TYPE - THE CONTENT-TYPE HEADER FROM THE RESPONSE • CUSTOM - A TEXT FIELD YOU CAN SET VIA SCRIPTING • COMMENTS - A TEXT FIELD YOU CAN SET FROM SCRIPTING OR THE SESSION'S CONTEXT MENU
CHECK STATISTICS OF THE REQUEST
³§°Õ´¡°Õ±õ³§°Õ±õ°ä³§(°ä°¿±·°Õ…)
CHART VIEW
CHECK FIDDLER INSPECTORS
REQUEST INSPECTORS • HEADERS—SHOWS REQUEST HEADERS AND STATUS. • TEXT VIEW—SHOWS THE REQUEST BODY IN A TEXT BOX • HEX VIEW—SHOWS THE REQUEST BODY IN A HEXADECIMAL VIEW. • XML—SHOWS THE REQUEST BODY AS AN XML DOM IN A TREE VIEW.
RESPONSE INSPECTORS • TRANSFORMER—REMOVES ZIP, DEFLATE, AND CHUNKED ENCODINGS FOR EASIER DEBUGGING. • HEADERS—SHOWS RESPONSE HEADERS AND STATUS. • TEXT VIEW—SHOWS THE RESPONSE BODY IN A TEXT BOX. • HEX VIEW—SHOWS THE RESPONSE BODY IN A HEXADECIMAL VIEW. • IMAGE VIEW—SHOWS THE RESPONSE BODY AS AN IMAGE. SUPPORTS ALL .NET IMAGE FORMATS.
RESPONSE HEADER(IMAGE VIEW)
TIMELINE
TRAFFIC COMPARISON • ONE LITTLE KNOWN AWESOME FEATURE OF WEB SESSIONS IS THE ABILITY TO COMPARE TWO SESSIONS. TO COMPARE TWO SESSIONS SELECT THEM IN THE WEB SESSIONS PANE, RIGHT CLICK AND CHOOSE 'COMPARE' ITEM FROM THE MENU.
COMPARE SESSION MENU
COMPARE SESSION RESULT
FIDDLER AND HTTPS • HTTPS IS SECURED BETWEEN TWO MACHINES • ACTS AS A MAN-IN –THE-MIDDLE • GENERATE CERTIFICATE FOR MACHINES ON THE FLY • FIDDLER SUPPORTS CLIENT CERTIFICATES FOR AUTHENTICATION
• FIDDLER USES A HACKING TECHNIQUE CALLED MAN-IN-THE-MIDDLE ATTACK TO DECRYPT HTTPS TRAFFIC:
LOCATING SPECIFIC TRAFFIC • MARKING SESSIONS MANUALLY • FILTER BY APPLICATION TYPE/PROCESS • FIND SESSIONS DIALOG • FLAGGING SPECIAL REQUESTS
MARK SESSIONS TO VIEW LATER ON
FIND OPTION
FILTER
SUMMARY • FIDDLER IS A WEB DEBUGGING TOOL • IT ALLOWS YOU TO WATCH HTTP TRAFFIC USING WEB SESSIONS AND COMPARE TWO SESSIONS • IT SHOWS YOU STATISTICS ABOUT THE SELECTED SESSIONS • YOU CAN INSPECT REQUESTS AND RESPONSES USING INSPECTORS • IT CAN DECRYPT HTTPS TRAFFIC USING THE MAN-IN-THE-MIDDLE ATTACK
REFERENCES • FIDDLER TUTORIAL • FIDDLER LECTURE OF IDO FLATOW • FIDDLER QUICK START GUIDE • WWW.FIDDLER2.COM
THANK YOU !!!

Recommended

Debugging with Fiddler
Debugging with FiddlerDebugging with Fiddler
Debugging with Fiddler
Ido Flatow
Ìý
Performance testing jmeter
Performance testing jmeterPerformance testing jmeter
Performance testing jmeter
Bhojan Rajan
Ìý
What is Web Testing?
What is Web Testing? What is Web Testing?
What is Web Testing?
QA InfoTech
Ìý
Apache JMeter - A brief introduction
Apache JMeter - A brief introductionApache JMeter - A brief introduction
Apache JMeter - A brief introduction
silenceIT Inc.
Ìý
Load testing with J meter
Load testing with J meterLoad testing with J meter
Load testing with J meter
Manoj Shankaramanchi
Ìý
Load Runner
Load RunnerLoad Runner
Load Runner
Shama Ahsan
Ìý
Introduction to performance testing
Introduction to performance testingIntroduction to performance testing
Introduction to performance testing
Richard Bishop
Ìý
Basics of Server Side Template Injection
Basics of Server Side Template InjectionBasics of Server Side Template Injection
Basics of Server Side Template Injection
Vandana Verma
Ìý
Performance testing using Jmeter for apps which needs authentication
Performance testing using Jmeter for apps which needs authenticationPerformance testing using Jmeter for apps which needs authentication
Performance testing using Jmeter for apps which needs authentication
Jay Jha
Ìý
Jmeter Performance Testing
Jmeter Performance TestingJmeter Performance Testing
Jmeter Performance Testing
Atul Pant
Ìý
Bdd – with cucumber and gherkin
Bdd – with cucumber and gherkinBdd – with cucumber and gherkin
Bdd – with cucumber and gherkin
Arati Joshi
Ìý
Web application security & Testing
Web application security & TestingWeb application security & Testing
Web application security & Testing
Deepu S Nath
Ìý
Performance testing using jmeter
Performance testing using jmeterPerformance testing using jmeter
Performance testing using jmeter
Rachappa Bandi
Ìý
End to end test automation with cypress
End to end test automation with cypressEnd to end test automation with cypress
End to end test automation with cypress
PankajSingh184960
Ìý
LoadRunner Performance Testing
LoadRunner Performance TestingLoadRunner Performance Testing
LoadRunner Performance Testing
Atul Pant
Ìý
Load Testing and JMeter Presentation
Load Testing and JMeter PresentationLoad Testing and JMeter Presentation
Load Testing and JMeter Presentation
Neill Lima
Ìý
Performance testing and reporting with JMeter
Performance testing and reporting with JMeterPerformance testing and reporting with JMeter
Performance testing and reporting with JMeter
jvºÝºÝߣshare
Ìý
Cucumber presenation
Cucumber presenationCucumber presenation
Cucumber presenation
Oussama BEN WAFI
Ìý
User Interface Testing. What is UI Testing and Why it is so important?
User Interface Testing. What is UI Testing and Why it is so important?User Interface Testing. What is UI Testing and Why it is so important?
User Interface Testing. What is UI Testing and Why it is so important?
Maveryx
Ìý
Teste de softwareTeste de software
Teste de software
Rafael Sanches
Ìý
Apache jMeter
Apache jMeterApache jMeter
Apache jMeter
NexThoughts Technologies
Ìý
Introduction to jmeter
Introduction to jmeterIntroduction to jmeter
Introduction to jmeter
test test
Ìý
Performance Testing
Performance TestingPerformance Testing
Performance Testing
sharmaparish
Ìý
Infographic: Importance of Performance Testing
Infographic: Importance of Performance TestingInfographic: Importance of Performance Testing
Infographic: Importance of Performance Testing
KiwiQA
Ìý
Jmeter
JmeterJmeter
Jmeter
Sun Technlogies
Ìý
Introduction to Bdd and cucumber
Introduction to Bdd and cucumberIntroduction to Bdd and cucumber
Introduction to Bdd and cucumber
Nibu Baby
Ìý
Http methods
Http methodsHttp methods
Http methods
maamir farooq
Ìý
Performance testing with JMeter
Performance testing with JMeterPerformance testing with JMeter
Performance testing with JMeter
Mikael Kundert
Ìý
Rise of the responsive single page application
Rise of the responsive single page applicationRise of the responsive single page application
Rise of the responsive single page application
Oren Shatken
Ìý
The Dark Side of Single Page Applications
The Dark Side of Single Page ApplicationsThe Dark Side of Single Page Applications
The Dark Side of Single Page Applications
Dor Kalev
Ìý

More Related Content

What's hot (20)

Performance testing using Jmeter for apps which needs authentication
Performance testing using Jmeter for apps which needs authenticationPerformance testing using Jmeter for apps which needs authentication
Performance testing using Jmeter for apps which needs authentication
Jay Jha
Ìý
Jmeter Performance Testing
Jmeter Performance TestingJmeter Performance Testing
Jmeter Performance Testing
Atul Pant
Ìý
Bdd – with cucumber and gherkin
Bdd – with cucumber and gherkinBdd – with cucumber and gherkin
Bdd – with cucumber and gherkin
Arati Joshi
Ìý
Web application security & Testing
Web application security & TestingWeb application security & Testing
Web application security & Testing
Deepu S Nath
Ìý
Performance testing using jmeter
Performance testing using jmeterPerformance testing using jmeter
Performance testing using jmeter
Rachappa Bandi
Ìý
End to end test automation with cypress
End to end test automation with cypressEnd to end test automation with cypress
End to end test automation with cypress
PankajSingh184960
Ìý
LoadRunner Performance Testing
LoadRunner Performance TestingLoadRunner Performance Testing
LoadRunner Performance Testing
Atul Pant
Ìý
Load Testing and JMeter Presentation
Load Testing and JMeter PresentationLoad Testing and JMeter Presentation
Load Testing and JMeter Presentation
Neill Lima
Ìý
Performance testing and reporting with JMeter
Performance testing and reporting with JMeterPerformance testing and reporting with JMeter
Performance testing and reporting with JMeter
jvºÝºÝߣshare
Ìý
Cucumber presenation
Cucumber presenationCucumber presenation
Cucumber presenation
Oussama BEN WAFI
Ìý
User Interface Testing. What is UI Testing and Why it is so important?
User Interface Testing. What is UI Testing and Why it is so important?User Interface Testing. What is UI Testing and Why it is so important?
User Interface Testing. What is UI Testing and Why it is so important?
Maveryx
Ìý
Teste de softwareTeste de software
Teste de software
Rafael Sanches
Ìý
Apache jMeter
Apache jMeterApache jMeter
Apache jMeter
NexThoughts Technologies
Ìý
Introduction to jmeter
Introduction to jmeterIntroduction to jmeter
Introduction to jmeter
test test
Ìý
Performance Testing
Performance TestingPerformance Testing
Performance Testing
sharmaparish
Ìý
Infographic: Importance of Performance Testing
Infographic: Importance of Performance TestingInfographic: Importance of Performance Testing
Infographic: Importance of Performance Testing
KiwiQA
Ìý
Jmeter
JmeterJmeter
Jmeter
Sun Technlogies
Ìý
Introduction to Bdd and cucumber
Introduction to Bdd and cucumberIntroduction to Bdd and cucumber
Introduction to Bdd and cucumber
Nibu Baby
Ìý
Http methods
Http methodsHttp methods
Http methods
maamir farooq
Ìý
Performance testing with JMeter
Performance testing with JMeterPerformance testing with JMeter
Performance testing with JMeter
Mikael Kundert
Ìý
Performance testing using Jmeter for apps which needs authentication
Performance testing using Jmeter for apps which needs authenticationPerformance testing using Jmeter for apps which needs authentication
Performance testing using Jmeter for apps which needs authentication
Jay Jha
Ìý
Jmeter Performance Testing
Jmeter Performance TestingJmeter Performance Testing
Jmeter Performance Testing
Atul Pant
Ìý
Bdd – with cucumber and gherkin
Bdd – with cucumber and gherkinBdd – with cucumber and gherkin
Bdd – with cucumber and gherkin
Arati Joshi
Ìý
Web application security & Testing
Web application security & TestingWeb application security & Testing
Web application security & Testing
Deepu S Nath
Ìý
Performance testing using jmeter
Performance testing using jmeterPerformance testing using jmeter
Performance testing using jmeter
Rachappa Bandi
Ìý
End to end test automation with cypress
End to end test automation with cypressEnd to end test automation with cypress
End to end test automation with cypress
PankajSingh184960
Ìý
LoadRunner Performance Testing
LoadRunner Performance TestingLoadRunner Performance Testing
LoadRunner Performance Testing
Atul Pant
Ìý
Load Testing and JMeter Presentation
Load Testing and JMeter PresentationLoad Testing and JMeter Presentation
Load Testing and JMeter Presentation
Neill Lima
Ìý
Performance testing and reporting with JMeter
Performance testing and reporting with JMeterPerformance testing and reporting with JMeter
Performance testing and reporting with JMeter
jvºÝºÝߣshare
Ìý
Cucumber presenation
Cucumber presenationCucumber presenation
Cucumber presenation
Oussama BEN WAFI
Ìý
User Interface Testing. What is UI Testing and Why it is so important?
User Interface Testing. What is UI Testing and Why it is so important?User Interface Testing. What is UI Testing and Why it is so important?
User Interface Testing. What is UI Testing and Why it is so important?
Maveryx
Ìý
Teste de softwareTeste de software
Teste de software
Rafael Sanches
Ìý
Apache jMeter
Apache jMeterApache jMeter
Apache jMeter
NexThoughts Technologies
Ìý
Introduction to jmeter
Introduction to jmeterIntroduction to jmeter
Introduction to jmeter
test test
Ìý
Performance Testing
Performance TestingPerformance Testing
Performance Testing
sharmaparish
Ìý
Infographic: Importance of Performance Testing
Infographic: Importance of Performance TestingInfographic: Importance of Performance Testing
Infographic: Importance of Performance Testing
KiwiQA
Ìý
Jmeter
JmeterJmeter
Jmeter
Sun Technlogies
Ìý
Introduction to Bdd and cucumber
Introduction to Bdd and cucumberIntroduction to Bdd and cucumber
Introduction to Bdd and cucumber
Nibu Baby
Ìý
Http methods
Http methodsHttp methods
Http methods
maamir farooq
Ìý
Performance testing with JMeter
Performance testing with JMeterPerformance testing with JMeter
Performance testing with JMeter
Mikael Kundert
Ìý

Viewers also liked (19)

Rise of the responsive single page application
Rise of the responsive single page applicationRise of the responsive single page application
Rise of the responsive single page application
Oren Shatken
Ìý
The Dark Side of Single Page Applications
The Dark Side of Single Page ApplicationsThe Dark Side of Single Page Applications
The Dark Side of Single Page Applications
Dor Kalev
Ìý
Testing your Single Page Application
Testing your Single Page ApplicationTesting your Single Page Application
Testing your Single Page Application
Wekoslav Stefanovski
Ìý
Introduction To Single Page Application
Introduction To Single Page ApplicationIntroduction To Single Page Application
Introduction To Single Page Application
KMS Technology
Ìý
Single Page Application (SPA) using AngularJS
Single Page Application (SPA) using AngularJSSingle Page Application (SPA) using AngularJS
Single Page Application (SPA) using AngularJS
M R Rony
Ìý
Natural Wonders of europe
Natural Wonders of europeNatural Wonders of europe
Natural Wonders of europe
Rohan Karmakar
Ìý
Learn Astrology level-3
Learn Astrology level-3Learn Astrology level-3
Learn Astrology level-3
Lucky Pal
Ìý
5 errores de los datos 15 errores de los datos 1
5 errores de los datos 1
joselyn coello
Ìý
VentajasVentajas
Ventajas
joselyn coello
Ìý
access eng-word - Copy
access eng-word - Copyaccess eng-word - Copy
access eng-word - Copy
Kevin McCaffrey
Ìý
Manoj kumar pandit
Manoj kumar pandit Manoj kumar pandit
Manoj kumar pandit
Manoj Kumar Pandit
Ìý
Mindfulness - a presentation for AJS 2016
Mindfulness - a presentation for AJS 2016 Mindfulness - a presentation for AJS 2016
Mindfulness - a presentation for AJS 2016
Agustin (Gus) Castellanos, M.D.
Ìý
Users_Group_May_2016_new_better2
Users_Group_May_2016_new_better2Users_Group_May_2016_new_better2
Users_Group_May_2016_new_better2
Jonathan Spigler
Ìý
Ensayo checoEnsayo checo
Ensayo checo
Luis Enrique Checo
Ìý
Varities of-benches-with-wild orchidquilts.net
Varities of-benches-with-wild orchidquilts.netVarities of-benches-with-wild orchidquilts.net
Varities of-benches-with-wild orchidquilts.net
Sophie Ray
Ìý
MillenialsMillenials
Millenials
jose de jesus rodriguez calderon
Ìý
Parsing
ParsingParsing
Parsing
Bistesh Nadiger
Ìý
LAS_Bachelor_thesis
LAS_Bachelor_thesisLAS_Bachelor_thesis
LAS_Bachelor_thesis
Anton Lytvynenko
Ìý
RioOlympics2016
RioOlympics2016RioOlympics2016
RioOlympics2016
Isabella Zampetaki
Ìý
Rise of the responsive single page application
Rise of the responsive single page applicationRise of the responsive single page application
Rise of the responsive single page application
Oren Shatken
Ìý
The Dark Side of Single Page Applications
The Dark Side of Single Page ApplicationsThe Dark Side of Single Page Applications
The Dark Side of Single Page Applications
Dor Kalev
Ìý
Testing your Single Page Application
Testing your Single Page ApplicationTesting your Single Page Application
Testing your Single Page Application
Wekoslav Stefanovski
Ìý
Introduction To Single Page Application
Introduction To Single Page ApplicationIntroduction To Single Page Application
Introduction To Single Page Application
KMS Technology
Ìý
Single Page Application (SPA) using AngularJS
Single Page Application (SPA) using AngularJSSingle Page Application (SPA) using AngularJS
Single Page Application (SPA) using AngularJS
M R Rony
Ìý
Natural Wonders of europe
Natural Wonders of europeNatural Wonders of europe
Natural Wonders of europe
Rohan Karmakar
Ìý
Learn Astrology level-3
Learn Astrology level-3Learn Astrology level-3
Learn Astrology level-3
Lucky Pal
Ìý
5 errores de los datos 15 errores de los datos 1
5 errores de los datos 1
joselyn coello
Ìý
VentajasVentajas
Ventajas
joselyn coello
Ìý
access eng-word - Copy
access eng-word - Copyaccess eng-word - Copy
access eng-word - Copy
Kevin McCaffrey
Ìý
Manoj kumar pandit
Manoj kumar pandit Manoj kumar pandit
Manoj kumar pandit
Manoj Kumar Pandit
Ìý
Mindfulness - a presentation for AJS 2016
Mindfulness - a presentation for AJS 2016 Mindfulness - a presentation for AJS 2016
Mindfulness - a presentation for AJS 2016
Agustin (Gus) Castellanos, M.D.
Ìý
Users_Group_May_2016_new_better2
Users_Group_May_2016_new_better2Users_Group_May_2016_new_better2
Users_Group_May_2016_new_better2
Jonathan Spigler
Ìý
Ensayo checoEnsayo checo
Ensayo checo
Luis Enrique Checo
Ìý
Varities of-benches-with-wild orchidquilts.net
Varities of-benches-with-wild orchidquilts.netVarities of-benches-with-wild orchidquilts.net
Varities of-benches-with-wild orchidquilts.net
Sophie Ray
Ìý
MillenialsMillenials
Millenials
jose de jesus rodriguez calderon
Ìý
Parsing
ParsingParsing
Parsing
Bistesh Nadiger
Ìý
LAS_Bachelor_thesis
LAS_Bachelor_thesisLAS_Bachelor_thesis
LAS_Bachelor_thesis
Anton Lytvynenko
Ìý
RioOlympics2016
RioOlympics2016RioOlympics2016
RioOlympics2016
Isabella Zampetaki
Ìý

Similar to Fiddler web testing tool (20)

Performance management
Performance managementPerformance management
Performance management
Alan Lok
Ìý
Jon Gorenflo - Burp Collaborator
Jon Gorenflo - Burp CollaboratorJon Gorenflo - Burp Collaborator
Jon Gorenflo - Burp Collaborator
centralohioissa
Ìý
cloud basics.pptx
cloud basics.pptxcloud basics.pptx
cloud basics.pptx
SanthoshMuniswami
Ìý
The 3 Top Techniques for Web Security Testing Using a Proxy
The 3 Top Techniques for Web Security Testing Using a ProxyThe 3 Top Techniques for Web Security Testing Using a Proxy
The 3 Top Techniques for Web Security Testing Using a Proxy
TEST Huddle
Ìý
How ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth Costs
How ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth CostsHow ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth Costs
How ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth Costs
NetFlow Analyzer
Ìý
Anatomy of a Modern PHP Application Architecture
Anatomy of a Modern PHP Application Architecture Anatomy of a Modern PHP Application Architecture
Anatomy of a Modern PHP Application Architecture
AppDynamics
Ìý
Customer Applications Of Hadoop On Red Hat Storage Server
Customer Applications Of Hadoop On Red Hat Storage ServerCustomer Applications Of Hadoop On Red Hat Storage Server
Customer Applications Of Hadoop On Red Hat Storage Server
Red_Hat_Storage
Ìý
Authentication
AuthenticationAuthentication
Authentication
primeteacher32
Ìý
ThousandEyes EMEA - WebEx Performance Monitoring
ThousandEyes EMEA - WebEx Performance MonitoringThousandEyes EMEA - WebEx Performance Monitoring
ThousandEyes EMEA - WebEx Performance Monitoring
ThousandEyes
Ìý
Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...
Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...
Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...
Databricks
Ìý
BSIDES-PR Keynote Hunting for Bad Guys
BSIDES-PR Keynote Hunting for Bad GuysBSIDES-PR Keynote Hunting for Bad Guys
BSIDES-PR Keynote Hunting for Bad Guys
Joff Thyer
Ìý
DEF CON 24 - workshop - Craig Young - brainwashing embedded systems
DEF CON 24 - workshop - Craig Young - brainwashing embedded systemsDEF CON 24 - workshop - Craig Young - brainwashing embedded systems
DEF CON 24 - workshop - Craig Young - brainwashing embedded systems
Felipe Prado
Ìý
Webinar: How to troubleshoot bandwidth hogs and take action.
Webinar: How to troubleshoot bandwidth hogs and take action.Webinar: How to troubleshoot bandwidth hogs and take action.
Webinar: How to troubleshoot bandwidth hogs and take action.
ManageEngine, Zoho Corporation
Ìý
SFDC Outbound Integrations
SFDC Outbound IntegrationsSFDC Outbound Integrations
SFDC Outbound Integrations
Sujit Kumar
Ìý
How to create custom dashboards in Elastic Search / Kibana with Performance V...
How to create custom dashboards in Elastic Search / Kibana with Performance V...How to create custom dashboards in Elastic Search / Kibana with Performance V...
How to create custom dashboards in Elastic Search / Kibana with Performance V...
PerformanceVision (previously SecurActive)
Ìý
WebRTC
WebRTCWebRTC
WebRTC
allanh0526
Ìý
KKBOX WWDC17 Security - Antony
KKBOX WWDC17 Security - AntonyKKBOX WWDC17 Security - Antony
KKBOX WWDC17 Security - Antony
Liyao Chen
Ìý
Presentation.pptx
Presentation.pptxPresentation.pptx
Presentation.pptx
PavanKumarMantha2
Ìý
Enterprise Node - Securing Your Environment
Enterprise Node - Securing Your EnvironmentEnterprise Node - Securing Your Environment
Enterprise Node - Securing Your Environment
Kurtis Kemple
Ìý
Closing the door on application performance problems
Closing the door on application performance problemsClosing the door on application performance problems
Closing the door on application performance problems
ManageEngine, Zoho Corporation
Ìý
Performance management
Performance managementPerformance management
Performance management
Alan Lok
Ìý
Jon Gorenflo - Burp Collaborator
Jon Gorenflo - Burp CollaboratorJon Gorenflo - Burp Collaborator
Jon Gorenflo - Burp Collaborator
centralohioissa
Ìý
cloud basics.pptx
cloud basics.pptxcloud basics.pptx
cloud basics.pptx
SanthoshMuniswami
Ìý
The 3 Top Techniques for Web Security Testing Using a Proxy
The 3 Top Techniques for Web Security Testing Using a ProxyThe 3 Top Techniques for Web Security Testing Using a Proxy
The 3 Top Techniques for Web Security Testing Using a Proxy
TEST Huddle
Ìý
How ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth Costs
How ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth CostsHow ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth Costs
How ManageEngine NetFlow Analyzer helped Boston Properties Save Bandwidth Costs
NetFlow Analyzer
Ìý
Anatomy of a Modern PHP Application Architecture
Anatomy of a Modern PHP Application Architecture Anatomy of a Modern PHP Application Architecture
Anatomy of a Modern PHP Application Architecture
AppDynamics
Ìý
Customer Applications Of Hadoop On Red Hat Storage Server
Customer Applications Of Hadoop On Red Hat Storage ServerCustomer Applications Of Hadoop On Red Hat Storage Server
Customer Applications Of Hadoop On Red Hat Storage Server
Red_Hat_Storage
Ìý
Authentication
AuthenticationAuthentication
Authentication
primeteacher32
Ìý
ThousandEyes EMEA - WebEx Performance Monitoring
ThousandEyes EMEA - WebEx Performance MonitoringThousandEyes EMEA - WebEx Performance Monitoring
ThousandEyes EMEA - WebEx Performance Monitoring
ThousandEyes
Ìý
Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...
Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...
Operationalizing Machine Learning—Managing Provenance from Raw Data to Predic...
Databricks
Ìý
BSIDES-PR Keynote Hunting for Bad Guys
BSIDES-PR Keynote Hunting for Bad GuysBSIDES-PR Keynote Hunting for Bad Guys
BSIDES-PR Keynote Hunting for Bad Guys
Joff Thyer
Ìý
DEF CON 24 - workshop - Craig Young - brainwashing embedded systems
DEF CON 24 - workshop - Craig Young - brainwashing embedded systemsDEF CON 24 - workshop - Craig Young - brainwashing embedded systems
DEF CON 24 - workshop - Craig Young - brainwashing embedded systems
Felipe Prado
Ìý
Webinar: How to troubleshoot bandwidth hogs and take action.
Webinar: How to troubleshoot bandwidth hogs and take action.Webinar: How to troubleshoot bandwidth hogs and take action.
Webinar: How to troubleshoot bandwidth hogs and take action.
ManageEngine, Zoho Corporation
Ìý
SFDC Outbound Integrations
SFDC Outbound IntegrationsSFDC Outbound Integrations
SFDC Outbound Integrations
Sujit Kumar
Ìý
How to create custom dashboards in Elastic Search / Kibana with Performance V...
How to create custom dashboards in Elastic Search / Kibana with Performance V...How to create custom dashboards in Elastic Search / Kibana with Performance V...
How to create custom dashboards in Elastic Search / Kibana with Performance V...
PerformanceVision (previously SecurActive)
Ìý
WebRTC
WebRTCWebRTC
WebRTC
allanh0526
Ìý
KKBOX WWDC17 Security - Antony
KKBOX WWDC17 Security - AntonyKKBOX WWDC17 Security - Antony
KKBOX WWDC17 Security - Antony
Liyao Chen
Ìý
Presentation.pptx
Presentation.pptxPresentation.pptx
Presentation.pptx
PavanKumarMantha2
Ìý
Enterprise Node - Securing Your Environment
Enterprise Node - Securing Your EnvironmentEnterprise Node - Securing Your Environment
Enterprise Node - Securing Your Environment
Kurtis Kemple
Ìý
Closing the door on application performance problems
Closing the door on application performance problemsClosing the door on application performance problems
Closing the door on application performance problems
ManageEngine, Zoho Corporation
Ìý

Fiddler web testing tool

  • 1. FIDDLER PERFORMANCE/STRESS TESTING TOOL COORDINATOR: PRESENTED BY: DR. ANOJ KUMAR HIMANI CHAUHAN CSED,MNNIT ALLAHABAD
  • 2. TABLE OF CONTENT • WHY WE SELECT FIDDLER • WHAT IS FIDDLER • WHAT CAN FIDDLER DO • KEY FEATURES • HOW DOES IT WORK • WEB SESSIONS • INSPECTORS • STATICS • TIMELINE
  • 3. WHY WE SELECT FIDDLER • WORKS WITH ALMOST ANY HTTP CLIENT NOT JUST FIREFOX AND IE • CAN INTERCEPT TRAFFIC FROM CLIENTS ON NON-WINDOWS PLATFORMS, E.G. MOBILE DEVICES • SUPPORTS PLUGINS TO ADD EXTRA FUNCTIONALITY • IT WILL PROVIDE SPECIFIC DATA ABOUT ALL THE INTERNET TRAFFIC THAT GOES THROUGH TO THE PC. • ITS USER INTERFACE IS KNOWN TO MAKE IT EASY TO MONITOR HTTP REQUESTS.
  • 4. WHAT IS FIDDLER • FIDDLER IS A WEB DEBUGGING TOOL WHICH LOGS ALL HTTP(S) TRAFFIC BETWEEN YOUR COMPUTER AND THE INTERNET. • FIDDLER ALLOWS YOU TO INSPECT TRAFFIC, SET BREAKPOINTS, AND "FIDDLE" WITH INCOMING OR OUTGOING DATA. • FIDDLER IS FREEWARE AND CAN DEBUG TRAFFIC FROM VIRTUALLY ANY APPLICATION THAT SUPPORTS A PROXY, INCLUDING INTERNET EXPLORER, GOOGLE CHROME, MOZILLA FIREFOX, OPERA, AND THOUSANDS MORE.
  • 5. FIDDLER IS… • AN HTTP DEBUGGER • WRITTEN IN .NET2/3.5 • EXTENSIBLE • FREE OF CHARGE • A MUST TOOL FOR EVERY WEB DEVELOPER
  • 6. WHAT CAN FIDDLER DO? • TRACK HTTP/HTTPS TRAFFIC • INSPECT MESSAGE CONTENT • MANIPULATE REQUESTS AND RESPONSES • EXPORT WEB SESSIONS FOR LATER INSPECTION • OFFER EXTENSIBILITY THROUGH SCRIPT AND CODE
  • 7. KEY FEATURES • WEB DEBUGGING • WEB SESSION MANIPULATION • PERFORMANCE TESTING • SECURITY TESTING • HTTP/HTTPS TRAFFIC RECORDING • CUSTOMIZING FIDDLER
  • 8. HOW DOES IT WORK?
  • 9. WATCHING TRAFFIC • WEB SESSIONS • STATISTICS • INSPECTORS • TIMELINE
  • 10. LET’S GET STARTED WITH FIDDLER
  • 12. KEY INFORMATION • # - AN ID# OF THE REQUEST GENERATED BY FIDDLER FOR YOUR CONVENIENCE • RESULT - THE RESULT CODE FROM THE HTTP RESPONSE • PROTOCOL - THE PROTOCOL (HTTP/HTTPS/FTP) USED BY THIS SESSION • HOST - THE HOSTNAME OF THE SERVER TO WHICH THE REQUEST WAS SENT • URL - THE PATH AND FILE REQUESTED FROM THE SERVER • BODY - THE NUMBER OF BYTES IN THE RESPONSE BODY
  • 13. CONTINUED... • CACHING - VALUES FROM THE RESPONSE'S EXPIRES OR CACHE-CONTROL HEADERS • PROCESS - THE LOCAL WINDOWS PROCESS FROM WHICH THE TRAFFIC ORIGINATED • CONTENT-TYPE - THE CONTENT-TYPE HEADER FROM THE RESPONSE • CUSTOM - A TEXT FIELD YOU CAN SET VIA SCRIPTING • COMMENTS - A TEXT FIELD YOU CAN SET FROM SCRIPTING OR THE SESSION'S CONTEXT MENU
  • 14. CHECK STATISTICS OF THE REQUEST
  • 18. REQUEST INSPECTORS • HEADERS—SHOWS REQUEST HEADERS AND STATUS. • TEXT VIEW—SHOWS THE REQUEST BODY IN A TEXT BOX • HEX VIEW—SHOWS THE REQUEST BODY IN A HEXADECIMAL VIEW. • XML—SHOWS THE REQUEST BODY AS AN XML DOM IN A TREE VIEW.
  • 19. RESPONSE INSPECTORS • TRANSFORMER—REMOVES ZIP, DEFLATE, AND CHUNKED ENCODINGS FOR EASIER DEBUGGING. • HEADERS—SHOWS RESPONSE HEADERS AND STATUS. • TEXT VIEW—SHOWS THE RESPONSE BODY IN A TEXT BOX. • HEX VIEW—SHOWS THE RESPONSE BODY IN A HEXADECIMAL VIEW. • IMAGE VIEW—SHOWS THE RESPONSE BODY AS AN IMAGE. SUPPORTS ALL .NET IMAGE FORMATS.
  • 22. TRAFFIC COMPARISON • ONE LITTLE KNOWN AWESOME FEATURE OF WEB SESSIONS IS THE ABILITY TO COMPARE TWO SESSIONS. TO COMPARE TWO SESSIONS SELECT THEM IN THE WEB SESSIONS PANE, RIGHT CLICK AND CHOOSE 'COMPARE' ITEM FROM THE MENU.
  • 25. FIDDLER AND HTTPS • HTTPS IS SECURED BETWEEN TWO MACHINES • ACTS AS A MAN-IN –THE-MIDDLE • GENERATE CERTIFICATE FOR MACHINES ON THE FLY • FIDDLER SUPPORTS CLIENT CERTIFICATES FOR AUTHENTICATION
  • 26. • FIDDLER USES A HACKING TECHNIQUE CALLED MAN-IN-THE-MIDDLE ATTACK TO DECRYPT HTTPS TRAFFIC:
  • 27. LOCATING SPECIFIC TRAFFIC • MARKING SESSIONS MANUALLY • FILTER BY APPLICATION TYPE/PROCESS • FIND SESSIONS DIALOG • FLAGGING SPECIAL REQUESTS
  • 28. MARK SESSIONS TO VIEW LATER ON
  • 31. SUMMARY • FIDDLER IS A WEB DEBUGGING TOOL • IT ALLOWS YOU TO WATCH HTTP TRAFFIC USING WEB SESSIONS AND COMPARE TWO SESSIONS • IT SHOWS YOU STATISTICS ABOUT THE SELECTED SESSIONS • YOU CAN INSPECT REQUESTS AND RESPONSES USING INSPECTORS • IT CAN DECRYPT HTTPS TRAFFIC USING THE MAN-IN-THE-MIDDLE ATTACK
  • 32. REFERENCES • FIDDLER TUTORIAL • FIDDLER LECTURE OF IDO FLATOW • FIDDLER QUICK START GUIDE • WWW.FIDDLER2.COM
AboutCopyright
© 2025 ºÝºÝߣ