So many penetration testers use this extension as a dedicated XSS testing tool. You can also easily extract, view and edit forms non-destructively even if forms cannot be edited. It also checks for injections and inspects objects. It finds how a website is filtering the code. XSS Rays, is a nice extension that helps in finding XSS vulnerability in a website.This is much useful for web developers.Īdd Cache KillerExtension to Google Chrome: It’s useful to bypass the browser cache and see the exact website in case it’s changing. It can be easily enabled or disabled with a single mouse click. Cache Killer, is another nice extension that automatically cleans the browser cache before loading pages.But Ads are not necessary and you can disable anytime from the extension settings page. This extension is ad-supported and all revenue goes to Unicef to help children worldwide. It also lets users protect, block or export cookies in json. It lets users delete, edit, add/or search cookies. This tool is really helpful while hijacking vulnerable test sessions. Cookie editor is a nice Chrome extension that lets users edit cookies.With proxy switcher, we can hide IP addresses and perform penetration testing tasks to check how a person can attack with proxy servers. You can also import or export data easily. It also has an option to set auto proxy switching based on URL. Proxy SwitchySharp, is a proxy extension that helps in managing and switching between multiple proxies quickly.It’s also helpful in performing various kind of attacks in a web applications by modifying http requests. You can see the function of this tool is similar to Burp. It can capture requests made via forms or XMLHttpRequests. It’s used in creating and capturing requests, tampering the URL, and making new headers with post data. Request maker, is a core penetration testing tool.If you open few specific pages daily, and create groups of those pages and then open with a single click. You can create a group of tabs of the same interest and then restore those pages in one click. Session manager, is a powerful Chrome extension that lets users save, update, restore, and remove sets of tabs.Really helpful in performing XSS and SQL injection attacks. You can set payloads for forms and then populate payloads quickly with this nice tool. It has a configuration menu where you can manage all settings of the extension. It can also select checkboxes, radio buttons and select items in forms. Form fuzzer, is used to populate predefined characters into different form fields.So, you can easily modify it according to your needs. It can also use your authentication to access all pages. One can also restrict the spider by adding restrictions and regular expressions, it works at the client’s side. It crawls all pages and reports all broken links. Site Spider, is an extension that adds a crawler in Chrome.This extension can perform a wide range of functions. Thus it reduces the time to encode and decode strings by using separate tools. It enables us to encode and decode selected text via context menu. d3coder, is another nice Google Chrome extension that helps penetration testers.It helps in analyzing how an application is working on the client’s side.Add Firebug Lite to Google Chrome: Firebug Lite for Google Chrome provides a rich visual environment to analyze HTML elements, DOM elements and other Box Model Shading.This extension helps analyzing web application elements like HTML and JS.Īdd Web Developer Extension in Chrome here With these tools, users can perform various web development tasks. Web Developer is a Google Chrome extension that adds a tool bar with various web development tools in Chrome. Google Chrome extensions for security researchers and penetration testers Note: Description of tools taken from Official Release So, you need to download from their official website. Few extensions are not available unofficially. All these extensions are available for free to download from Google Chrome’s Web store. In this post, I have collected all those extensions that help us in the penetration testing process. Like Firefox, we can also make Google Chrome a security tool with the use of some nice security extensions. In previous posts, we have covered the Firefox add-ons that make Firefox a security testing tool. There are thousands of Google Chrome extensions available that add nice tools directly in the browser and reduce the need of installing separate tools for those works. Extensions help us in improving the functionality of Google Chrome. Like Firefox, Chrome also supports add-ons but called extensions for Chrome. It also has various other features that make website browsing easy and faster. This is the main reason of its popularity. It’s light weight and comes with a clean interface. Google Chrome is the most popular web browser of the world.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |