安卓逆向的时候,有时候会遇到双向认证的app,怎么使用fiddler抓双向认证的app呢?
官方文档说的很明白
https://www.fiddlerbook.com/fiddler/help/httpsclientcerts.asp
oSession["https-Client-Certificate"] = "C:\test\someCert.cer"; 把路径修改为你自己提取出来的证书即可
接单JS逆向/安卓逆向/小程序逆向 微信:cjh-18888If a .CER file has been specified for a given session as follows:
oSession["https-Client-Certificate"] = "C:\test\someCert.cer";
...then Fiddler will simply use that certificate for the current session.
Otherwise, Fiddler will look for the file %USERPROFILE%My DocumentsFiddler2ClientCertificate.cer and attach that certificate.