Sniffing traffic between a Flex app and ColdFusion backend

V

6

7

What is a good strategy for sniffing/tracing function calls between a Flex application and a ColdFusion-based backend running on ColdFusion server? I understand they use AMF protocol.

I'm used to using Fiddler to sniff transactions between HTTP clients and servers, and it works great as long as you're using plain text or XML HTTP requests and responses (including those over SSL) but it isn't much help for binary protocols like AMF over HTTP.

In my case, I do have access to the source code for the client and server, but I'm looking for an easy way to passively sniff traffic in any Flex + ColdFusion situation, without having to tweak anything on the server.

Verein answered 18/9, 2008 at 18:36 Comment(1)

Sigh... I guess it's time for me to actually learn Wireshark. I've been avoiding it because Fiddler is so much simpler IMO. – Verein 18/9, 2008 at 18:47

L

1

Firebug with the Flashbug plugin will show all decoded AMF messages both to and from a Flash app. Works well over HTTPS too.

https://addons.mozilla.org/en-us/firefox/addon/amf-explorer/.

Ligetti answered 18/9, 2008 at 18:37 Comment(1)

Due to its nature, is it limited to Flex apps running in the browser? (no joy for desktop AIR applications) – Battue 21/5, 2013 at 7:58

V

9

Wireshark: sniffing the glue that holds the internet together

http://www.wireshark.org/

Vulturine answered 18/9, 2008 at 18:39 Comment(0)

B

6

http://www.charlesproxy.com/

Although not free, will decode AMF binary data and allows to trace SSL connections too.

Battue answered 18/9, 2008 at 23:48 Comment(2)

Charles is so damn great it almost hurts! – Awildaawkward 19/9, 2008 at 7:27

Charles is amazing and totally worth the license fee. – Valeryvalerye 4/12, 2008 at 2:59

K

3

ServiceCapture is another option. It decodes the binary AMF for you, if I remember correctly.

http://kevinlangdon.com/serviceCapture/

Kiehl answered 18/9, 2008 at 19:16 Comment(0)

L

1

Firebug with the Flashbug plugin will show all decoded AMF messages both to and from a Flash app. Works well over HTTPS too.

https://addons.mozilla.org/en-us/firefox/addon/amf-explorer/.

Ligetti answered 18/9, 2008 at 18:37 Comment(1)

Due to its nature, is it limited to Flex apps running in the browser? (no joy for desktop AIR applications) – Battue 21/5, 2013 at 7:58

S

1

The simple and poor man's trick. Create one cfc to log calls to the different cfc's and pages as you need. Dump it all to a table. Filter and sort at will. I have done this in the past and it has worked great. It's like putting in little fish hooks anywhere you want to know. This would likely give you the most application relevant data. If you need an example let me know.

Straightout answered 4/2, 2009 at 15:47 Comment(0)

I

0

ditto for wireshark (the artist formerly known as Ethereal). you can sniff at every protocol layer, and stitch together traffic streams.

Inoculum answered 18/9, 2008 at 19:11 Comment(0)

Recommended topics

Hot tags