Security toolbox
Finally, we present some useful tools that help you investigate the flow of information between your WebSocket clients and server, analyze the exchanged data, and identify possible risks.
Fiddler
Fiddler is a great tool for monitoring the network activity and inspecting the traffic of any incoming or outgoing data.
The following screenshot shows fiddler in action, displaying the WebSocket headers:
Fiddler can be downloaded from http://www.fiddler2.com/fiddler2/
Wireshark
Wireshark is a network packet analyzer that captures the packages and displays their data as accurately as possible.
The following screenshot shows wireshark in action:
Wireshark can be downloaded from http://www.wireshark.org/
Browser developer tools
Chrome, Firefox, and Opera are great browsers in terms of developer support. Their built-in tools help us determine almost any aspect of client-side interactions and resources.
The following screenshot shows Chrome developer tools in action:
ZAP
ZAP is a penetration...