How to sniff http requests - asp.net

I want to sniff a local HTTP request to an ASP.NET web application.
Is telnet an option?
How do you capture packets to a web application?

Depending on your exact requirements, Fiddler may be sufficient.

http://www.wireshark.org/ is a very advanced and free sniffer/protocol analyzer. I use it on our servers to monitor things from sip protocol info to raw http data. Its all you need and you can add filter rules to just get the data from certain IP etc. ie:
ip.addr == 192.168.1.1
Raw packets and headers all included.

For ease of setup, I personally would use either the Tamper Data (https://addons.mozilla.org/en-US/firefox/addon/966) or Live HTTP Headers (https://addons.mozilla.org/addon/3829) plugin for the FireFox browser - or for a lower level solution WireShark (http://www.wireshark.org/)

Have you tried browser plugins that allow you to do this? Firebug, etc.

I found this in another post, it works
http://socketsniff.nirsoft-freeware.qarchive.org/_download2.html

There are browser add-ins that can make sniffing of the HTTP requests easy:
For Internet Explorer, there is the Fiddler Web Debugger.
For Firefox, there is the Live HTTP Headers add-in.

Related

See data that an app is secretly sending to web server in the background

I was playing around with fiddler (http proxy) and I noticed that some apps are making http get/post requests in the background and sending data and stats to and from the web. This got me interested and a little concerned to see what data various apps were sending but it seems that most of them are not doing it on port 80 via http but presumably on another port so you can't see the data in fiddler. Is there some way to view and/or potentially block the data being sent?
You're asking: "Using Fiddler, I saw that traffic was being sent by clients to servers. How can I see that traffic?"
Might I suggest you use Fiddler?
You can see the process sending the traffic in the Process column, and you can view the contents of the requests and responses using the Inspectors tab.
I would check out burp suite. It is a proxy you set up in your web browser and shows all of the data that passes through it. There's plenty of tutorials online. Check it out here

trace http session

In a developement environement (where often the browser and the http server are on the same machine) i want to study the exact detail of authentication schemas. So i need to trace down every http request/response.
I've tried WireShark, that is very promising. But actually on
windows machines there is a problem in sniffing the traffic on
loopback interface.
Then i've tried a browser plugin, HttpFox
0.8.10 of Firefox 12. It is good in showing requests and responses, but in the specific case of authentication, it doesn't correctly
show the "double hop" authentication, it "collapses" the first
request (the Unauthorized status code) with the next, successful
one.
Then i've tried to work with the logs of httpd, that is my
actual server, but it is required a not trivial effort to create a
log that contains all the request such as headers (the authorization
header).So it doesn't seem a good "debug" technique.
Are there other possibilities?
Go with Wireshark. The answer to this question will address the loopback issue. Wireshark is the best because it really understands the formatting of everything related to HTTP (so long as you are not using HTTPS).

Fiddler2 for tcp only

hoping you could help out... is there a way of getting Fiddler2 to monitor just tcp traffic as opposed to looking for HTTP?
I have a legacy application that sends TCP text and need to capture it to track an issue.. Fiddler2 is great for web based http monitoring and if possible i'd like to use this for TCP based monitoring as well (I understand the layout & format) .. is this possible or do I need to look at WireShark or something similar?
Thanks!
As explained on the Fiddler website, Fiddler is a HTTP/HTTPS proxy server. You cannot debug TCP with it; use Microsoft Network Monitor or Wireshark for those tasks.

Any resource/codes on how fiddler works?

I need to track http/url requests & redirects from a windows forms application using C#. It should handle both IE & firefox. Not sure if Fiddler is open-source but if i'm not mistaken, it's written using .NET. Sample codes or online articles on how to listen to http/url requests & redirects will be appreciated.
Thanks!
Fiddler works as standard HTTP proxy. There is no magic here. See HTTP protocol for details. In both IE/Firefox, you need to set Fiddler (or your custom program) as proxy, and then browser will use it for all outgoing requests. Proxy is responsible for forwarding request to correct server, and returning response. Proxies are typically used for 1) caching, 2) controlling access (and avoiding firewalls), 3) debugging.
See also Open Source Proxy Library for .Net for .NET proxy library (just quick googling... I have no experience with it).
You'd probably be interested in the new FiddlerCore library: http://fiddler.wikidot.com/fiddlercore

What is the purpose of HTTP Watch Pro?

What is the purpose of this software?
http://www.httpwatch.com/
I prefer the HTTPFox add-on for FireFox:
https://addons.mozilla.org/en-US/firefox/addon/6647
and Fiddler for IE:
http://www.fiddlertool.com/fiddler/
both offer similar functionality to httpwatch (but they are free).
It helps you analyze/debug/monitor the HTTP comunication between server and browser. It runs on the browser and tracks all HTTP traffic.
A small part of this task is also done by the firefox plugin Live HTTP Headers

Resources