之前猜测过其工作原理,发现了一篇文章介绍了,和之前的猜测一样,HOOK了API。
Network monitor works by conditionally enabling code in the Flex SDK
(depending upon whether Network monitor is enabled or not) that
re-routes the Flex RPC calls to an internal proxy. This proxy makes
the outward HTTP request. Therefore, it can report the actual HTTP
request and response and is not bound by the several security and
transformation rules that the Flash Player enforces on network
requests.
http://anirudhs.chaosnet.org/blog/2009.06.01.html
另外还提到有http://www.charlesproxy.com/和http://www.fiddler2.com/fiddler2/,这两个没比较过,而wireshark对amf的支持还没有测试过。
没有评论:
发表评论