wakasann
commented
4 years ago 打开一个https请求的文本视图显示的资料
发现SSLv3兼容的ClientHello握手. Fiddler 提取下面的参数.
版本: 3.3 (TLS/1.2)
随机: 28 70 BC 6B 64 CF 46 1E 66 47 50 92 29 CF 1C 3E 82 4E 83 B8 B9 EB DC 94 B7 46 3D 0C 6F C2 72 01
"时间": 2027/4/12 14:33:12
会话ID: empty
扩展:
renegotiation_info 00
server_name apis1.gifshow.com
extended_master_secret empty
SessionTicket empty
signature_algs sha256_ecdsa, Unknown[0x8]_Unknown[0x4], sha256_rsa, sha384_ecdsa, Unknown[0x8]_Unknown[0x5], sha384_rsa, Unknown[0x8]_Unknown[0x6], sha512_rsa, sha1_rsa
status_request OCSP - Implicit Responder
ALPN h2, http/1.1
ec_point_formats uncompressed [0x0]
elliptic_curves unknown [0x1D), secp256r1 [0x17], secp384r1 [0x18]
加密算法:
[C02B] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
[C02C] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
[CCA9] TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
[C02F] TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
[C030] TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
[CCA8] TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
[C013] TLS1_CK_ECDHE_RSA_WITH_AES_128_CBC_SHA
[C014] TLS1_CK_ECDHE_RSA_WITH_AES_256_CBC_SHA
[009C] TLS_RSA_WITH_AES_128_GCM_SHA256
[009D] TLS_RSA_WITH_AES_256_GCM_SHA384
[002F] TLS_RSA_AES_128_SHA
[0035] TLS_RSA_AES_256_SHA
压缩:
[00] NO_COMPRESSION
今天通过自己写的教程,运行起了环境,设置好Fiddler代理,刷新快手App,提示:网络链接失败 Fiddler 中,显示快手的https链接也是灰色的小锁。
通过搜索关键字: fiddler SSLv3,大概都详细看了下面三个文章的说明
fiddler手机抓包难题无法通过证书验证 请教使用 Fiddler 或者 Charles 抓 https 包失败的问题 为了抓包某app,我折腾了10天,原来他是用SSL Pinning防抓包的
最后自己清楚一个叫 SSL Pinning的,应该是快手服务端做了SSL Pinning,双向验证证书了,导致Fiddler无法正常抓取快手App的Https请求