安卓app连fiddler代理后，网络异常；fiddler tu

作者: leyu | 来源:发表于2018-08-31 14:21 被阅读0次

安卓app连fiddler代理后，网络异常；fiddler tu
LoadRunner录制app脚本
fiddler抓取移动端https数据获取不到的问题
使用fiddler抓取php curl请求
Fiddler 笔记
Fiddler抓https请求
测试中常用工具
Fiddler抓包安卓模拟器（支持HTTPS）
关于Fiddler抓取安卓网络请求包方法
[转]android中用Fiddler模拟低速网络环境

安装包地址： [https://github.com/android-hacker/VirtualXposed/releases](https://github.com/android-hacker/VirtualXposed/releases)

下载JustTrustMe
下载地址： https://github.com/Fuzion24/JustTrustMe
用VirtualXposed 安装JustTrustMe.apk
通过VirtualXposed app安装爱奇艺客户端，配好代理就能抓包了。

image.png
https://blogs.msdn.microsoft.com/jpsanders/2013/04/03/configuring-fiddler-to-be-a-proxy-for-android-emulators-in-eclipse/
https://stackoverflow.com/questions/32630925/sniffing-android-apps-https-traffic-from-fiddler-fails-with-only-tunnel-to-en

https://groups.google.com/forum/#!topic/httpfiddler/RCkzE3HhhxY
1. When going through a proxy, HTTPS traffic flows through what are called "CONNECT Tunnels". The reason HTTPS traffic is special is that it encrypts all of the data so that an intermediary (like Fiddler) cannot normally see it. The problem with doing that is that if the intermediary proxy (like Fiddler) can't see the traffic, it doesn't know where to send it. So the client sends a HTTP CONNECT request to the proxy and specifies the target destination. E.g. CONNECT husband.umd.edu:443 HTTP/1.1. (Note that the request line doesn't include a URL, only the hostname).

The proxy is expected to open a connection to the target and then just blindly shuffle bytes back and forth. Fiddler *could *show the hostname in the HOST column *and *in the URL column, but for readability in English it instead shows the HOST only in the URL column and shows "Tunnel to" in the host column.

2. Yes, the fact that the browser felt the need to establish a connection to **ssl.google-analytics.com **is a good sign that the page it loaded includes one or more tracking requests to the Google servers. If you enable HTTPS decryption, you can see the actual requests and not just the tunnels.

SPDY is a new protocol that sits between TCP/IP and HTTP; it reformats HTTP messages in a compressed binary way to improve performance. SPDY traffic is always over SSL and hence you see it in Tunnels. When a tunnel is established, Fiddler looks at flags in the client and server's handshakes to determine if SPDY is likely in use and if so, it shows this icon. Note that if you enable HTTPS decryption, SPDY will no longer be used because the flags sent in a SPDY handshake cannot be sent by Fiddler and thus the client and server speak plain HTTPS instead.

https://textslashplain.com/2015/11/19/understanding-connect-tunnels/