Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to get http responses from Firefox to machine readable format in real time?

Tags:

browser

http

firefox

httpresponse

I'm using a flash application in my browser to send http requests to a server. The server returns http responses to the browser. I would like to access the body/payload of these http responses with another program in real time.

I tried two approaches.

1.

I can see all the responses that Firefox receives in the Network Monitor tool that comes with Firefox. I just don't know how to access the data from any other program.

2.

I tried logging the network data in Firefox with about:networking using these log modules:

timestamp,sync,nsHttp:3

This logged the headers as expected, but omitted the bodies of the responses. Higher levels of nsHttp logged more info, but not the body.

Additional info that may be relevant:

  • I cannot send requests from any other program. The flash application in the browser must make all http requests.
  • I'm not stuck with Firefox, it's just my preference. A solution for a different browser is acceptable.
like image 737
Jemi Salo Avatar asked Dec 30 '17 22:12

Jemi Salo

2 Answers

(I asume you are working on windows)

You could use fiddler to intercept the traffic between browser and server.

Fiddler acts as a Proxy and there is an add on which generates cap files from the traffic called fiddlerCap

If on a Mac or Linux you could use other command line proxys which allow you to intercept and log the traffic.

Another solution could be to make the server log its responses. This could be done be using modsecurity, check out the section about audit-log

like image 78
macbert Avatar answered Oct 16 '22 18:10

macbert

The reason it was garbled when you intercepted the traffic with ngrep was because the session is encrypted.

The best way to intercept and log secure session data is to set up a MITM proxy with a fake certificate on your local machine.

For Windows, I think Fiddler is your best bet. Fiddler has a simple and effective workflow for doing this. The following documentation page, "Decrypting HTTPS-protected traffic", describes the steps involved: https://www.fiddlerbook.com/fiddler/help/httpsdecryption.asp

If you're on macOS, you could try Charles Proxy or Fiddler for Mac (which is currently still in Beta).

FireFox and Chrome also have built-in ways to log and export session data, but I think you'll find Fiddler/Charles and similar tools to be more flexible, especially if you need to consume the data elsewhere.

like image 1
Roy Tinker Avatar answered Oct 16 '22 16:10

Roy Tinker
Sign in to Comment

Related questions

Sending HTTP requests with C# HttpWebRequest or WebClient?
How to handle up to 100k HTTP connections in .Net
Detect and log when external JavaScript or CSS resources fail to load
HTML5 audio with a HTTP 302 redirect in Chrome
How to handle stale data in REST?
ErrorClosed exception from Network.HTTP.simpleHTTP -- trying to upload images via XML-RPC with haxr
QNetworkAccessManager: post http multipart from serial QIODevice
Sending HTTP POST request in iOS with JSON
HTTP Response Header - Application Version
How to use Api key in Web Api for service authentication using forms authentication
Weird behavior when downloading html using HttpURLConnection
Send an http request in mysql trigger after insertion in a table
How can I use and authorize an http proxy with node.js http.Client
lightweight asyncio web server
yum install fails with HTTP 403 trying to access repomd.xml
Firefox randomly close XMLHttpRequest connection if inactive. Why?
Websocket - Should client send ping frames?
How to deal with browser's limit of parallel requests per domain in case of a priority AJAX request?
How do I add a custom HTTP Request Header to a Thymeleaf generated Form or Link?
HTTP referrer - AWS, Sharepoint and browsers

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!