posted by Ericlaw at
I have a question. We use Fiddler as a tool during penetration testing. We frequently test banking applications. Those applications sometimes make use of client side SSL, but with certs issued on smartcards. Are there any plans to include support for PKCS#11 or simply use any client certificate that is registered in Windows?
By Pawel, at 12:05 AM
If you export a .CER from the SmartCard certificate, Fiddler will use the matching certificate from the smartcard to authenticate.See http://groups.msn.com/HTTPFiddler/featurerequests.msnw?action=get_message&mview=0&ID_Message=499&LastModified=4675630115210406507 for further discussion
By Ericlaw, at 12:09 AM
Post a Comment
Discussion of HTTP Internals. Particularly focused on Microsoft Fiddler, some Internet Explorer internals are explored.
View my complete profile