Often in troubleshooting issues with websites a repro using Fiddler may be gathered. But customers may not know that any credentials posted in a web form are captured.
It would be easier if the Fiddler trace has an option added to offer to sanitize all occurrences of a string (especially in post body) which looks like a credential been sent.
This helps customer ensure no sensitive information is shared. The support engineer can rest assured that he has what he needs minus the password to review troubleshoot the trace.