Token Extractor

Token Devtools Inspector

Retrieve Authorization header from the request made in your tab. You'll have a faster way to paste or go to JWT.io 🚀 Token Extractor: Streamline Your Authorization Workflow in Chrome DevTools! Token Extractor, a robust Chrome extension, is your go-to tool for effortlessly extracting authorization tokens from HTTP requests within Chrome DevTools. 🛠️ With just a few clicks, developers can identify requests containing authorization headers, extract tokens, and seamlessly perform essential tasks. How to Use: 1. Open your Dev Tools in Chrome 🌐 2. Locate the Token Inspector panel (similar to Console, Network, or Application panels) 🕵️ 3. Voila! Your tokens are right there for easy access 🎉 Rest assured, no sensitive data is extracted. Check out the source code on https://github.com/Guuri11/token-inspector for peace of mind. Key Features: - Effortless Token Extraction: Say goodbye to manual inspection! Token Extractor automates the detection of requests with authorization headers. - Flexible Token Handling: Tailor the output to your needs by choosing to include or exclude the "Bearer" keyword from the extracted token. - User-Friendly Interface: Seamlessly integrated into Chrome DevTools, the extension offers an intuitive and easy-to-use interface for swift token extraction. - Enhanced Workflow: Copy extracted tokens to the clipboard with a single click, ensuring seamless integration into your applications and APIs. - Token Inspection: Dive deeper into extracted tokens by inspecting them on jwt.io. Understand token structures and contents effortlessly. ⏰ Save valuable time and elevate your development workflow with Token Extractor. Install the extension now to simplify your token extraction process! 🚀

Opkey Token Request Plugin

Opkey Token Request allows user to fetch access token for 'Authorization Code' and 'Implicit' grant types for 'OAuth2' type. Opkey Token Request is a plugin which allows user to fetch access token for 'Authorization Code' and 'Implicit' grant types for 'OAuth2' type authentication type. Following modules in Opkey utilizes the plugin service: 1. Token Management 2. Service Repository

CyberPost Lab

A fully offline, browser-based HTTP request testing tool for cybersecurity researchers CyberPost Lab - Comprehensive Web Testing Tool for Security Researchers Brief Description CyberPost Lab is a specialized Chrome extension that enables security researchers, penetration testers, and information security specialists to conduct comprehensive web tests completely offline. The tool combines an advanced payload generator, encoding/decoding utilities, and an integrated HTTP request laboratory, all within a modern, user-friendly interface. Key Features Integrated HTTP Request Laboratory - Send and receive HTTP/HTTPS requests using any method (GET, POST, PUT, DELETE, and more) - Full support for custom parameters and headers - View responses in formatted JSON, raw text, or HTML preview - Create mock requests for testing without an internet connection - Automatic session persistence between browser sessions Encoding and Decoding Tools - Easily encode and decode Base64 - URL encoding and decoding - HTML entity conversion and reversal - JWT decoding with structured content display Specialized Payload Generator A comprehensive collection of ready-to-use test payloads for immediate security testing: - XSS (Cross-Site Scripting) - SQL Injection - Command Injection - LFI (Local File Inclusion) - SSRF (Server-Side Request Forgery) - RCE (Remote Code Execution) - SSTI (Server-Side Template Injection) - XXE (XML External Entity) - CRLF Injection - JSON Injection - Host Header Injection - Windows LFI Who Is This Tool For ? CyberPost Lab targets professionals in the cybersecurity field, including: - Ethical hackers and security researchers - Web developers concerned with application security - Information security students and practitioners - Security incident response teams Additional Features - Modern user interface inspired by professional cybersecurity tools - Smooth and responsive user experience - Works completely offline without requiring an internet connection - Maintains data privacy - all operations occur locally on your device - Compatible with the latest versions of Chrome browser Developed by the Ghostbyte® Team Created by a team specialized in information security with a focus on providing practical tools for security professionals. CyberPost Lab - Your Essential Web Security Testing Toolkit. have fun

Access Token Grabber

Access Token Grabber - One‑click JWT tokens from Dev-Tools for faster API testing (Open-source) Get your web request access tokens instantly without digging through DevTools. This lightweight, background Chrome extension detects tokens as you browse and lets you copy them with a single click, perfect for Postman, cURL, or any API client. Open‑source. Transparent. Your token never leaves your computer. 👉 Why it’s better Stop hunting for auth requests in Network tab and manually copying headers. Access Token Grabber automatically surfaces detected tokens and marks them with a small “1” badge when one is ready. Click once to copy - no extra steps, no context switching, no guesswork. 🔑 Key benefits - One‑click copy: Grab the token directly from the extension with a single click. - Works while you work: Runs silently in the background and detects tokens when requests fire. - Dev‑friendly: Ideal for testing backend endpoints, reproducing issues, and iterating with Postman or other API tools. - Open‑source and transparent: Review the code, contribute, and trust what runs in your browser. - Privacy: No tokens leave your machine. ❓ How to use 1. Install the extension from the Chrome Web Store. It'll automatically run in the background. 2. Browse to your app or the page that triggers authenticated requests. 3. When a token is detected, you’ll see a "1" indicator on the extension icon. 4. Click the extension icon once to copy the token to your clipboard. 5. Paste into Postman, cURL, or your API client’s Authorization header and start testing. ⚙️ What it detects Access Token Grabber looks for access tokens in outgoing requests and defined auth headers used by modern web apps. It’s designed to simplify typical developer workflows without changing how your app authenticates. 🔒 Privacy & security - Tokens stay locally in your browser. - Fully open‑source so you can audit the code yourself. 👉 Get involved Check out the source code, open issues, and contribute on GitHub: https://github.com/yannherren/access-token-grabber-extension Make token retrieval a one‑click action and get back to building.