aimblagbdhholnjfmmigkackjifbccbb
Makes all hidden input fields visible and prevents Autofill from filling them. SafeFill is designed to make all hidden input fields on a webpage visible and to prevent Autofill from filling these fields automatically. Here’s a summary of the extension's features and why users should install it: Visibility of Hidden Fields: The extension identifies and reveals all hidden input fields (e.g., input[type="hidden"], input[hidden], and fields hidden by CSS). This feature enhances transparency, allowing users to see all input fields and understand what data might be captured by a webpage. Autofill Security: The extension prevents Google Autofill from populating hidden fields with sensitive data. This security measure ensures that personal or confidential information is not unintentionally submitted through hidden fields. Customizable Settings: Users can choose which types of hidden fields should be made visible. The extension includes an option to exclude popular websites from these checks, with the ability to manually add specific sites to an exclusion list. A highlight color setting allows users to customize the visibility of hidden fields, making them easier to spot. Notifications and Logging: If a hidden field is autofilled, the extension displays a dismissible alert, notifying users of the action. There is an option to log all hidden fields to the console for users who want to monitor and review these fields for debugging or security purposes. This Chrome extension is particularly beneficial for users who prioritize privacy and security, offering them greater control and visibility over their personal data online. By installing this extension, users can protect themselves against hidden data capture methods and ensure their information is handled transparently.
JS Recon Buddy
Analyze page scripts for bug bounty reconnaissance. The scanner uses a set of regex patterns to identify and categorize potential security-related information: - Subdomains - discovers related subdomains within the code. - Endpoints & Paths - uncovers potential API endpoints and other useful paths. For Next.js applications, it also automatically parses (if possible) the build manifest to discover all client-side routes. - Potential Secrets - scans for API keys, tokens, and other sensitive data using pattern matching and Shannon entropy checks. - Potential DOM XSS Sinks - identifies dangerous properties and functions like .innerHTML and document.write. - Interesting Parameters - flags potentially vulnerable URL parameters (e.g., redirect, debug, url). - Potential Dependency Confusion - (opt-in) identifies private NPM packages that are not on the public registry, flagging a potential dependency confusion attack vector. - Source Maps - finds links to source maps which can expose original source code. Can optionally guess the location of source maps for discovered JavaScript files even if they aren't explicitly linked. If it is a valid source map, the extension tries to deconstruct source files based on data there - JS Libraries - lists identified JavaScript libraries and their versions. - External and Inline Scripts - provides a complete inventory of all JavaScript sources loaded by the page, allowing you to view the content of any script in a formatted viewer.
WebInvestigator
Capture, organise and report online evidence. For investigators, legal teams, HR and anyone who needs to prove what happened online. WebInvestigator turns your browser into a professional investigation tool. Whether you're a private investigator, HR manager, lawyer, journalist, or just someone who needs to document what's happening online — WebInvestigator captures, organises, and reports on web evidence automatically. Start a case, browse normally, and capture evidence with one click. Every screenshot and PDF is automatically timestamped, verified, and organised into a professional report you can share, submit, or keep on file. 1. Name your case and start your investigation 2. Browse normally — WebInvestigator logs every page you visit automatically 3. Click to capture: screenshot, full-page PDF, or annotated evidence 4. Add notes, flag important pages, and review your timeline 5. Generate a professional evidence report in one click — ready to share or submit → One-click screenshots — automatically saved with the URL, time, and page details → Full-page capture — saves the entire page, not just what's visible on screen (Pro) → PDF export — save complete web pages as PDFs for offline access and records → Screenshot annotations — highlight, draw, blur, and label anything on the page (Pro) → Every capture is automatically verified and tamper-evident → Every page you visit during an investigation is logged automatically → Organise evidence by case with unique reference IDs → Flag important pages for priority review → Add notes to individual pages or your entire case → Interactive investigation timeline — see everything in order (Pro) → Redact sensitive content before exporting → All evidence stays organised from the moment you start → Professional evidence reports generated automatically → Everything organised by website, timeline, and case reference → Tamper-evident verification included in every export → Export as HTML report, JSON data, or ZIP archive → Print-ready formatting — hand it to a client or submit it directly → One-click export from the investigation timeline → Everything stays on your device — no cloud, no servers, no syncing → All investigation data is encrypted locally → Anonymous usage analytics help us improve the product — opt out anytime in settings → No one can access your cases or evidence but you → Your investigations belong to you FREE — 3 full investigations per month. Includes screenshots, PDFs, page logging, notes, flagging, and professional reports. No account required. No credit card. PRO — Unlimited investigations. Adds full-page capture, screenshot annotations, interactive timeline, enhanced verification, and priority support. $9.99/month or $99/year. → Private investigators — document online activity for clients, fraud, and family law cases → HR and workplace investigators — capture evidence of employee misconduct online → Legal professionals — preserve web evidence for court, discovery, and litigation → Law enforcement — open source intelligence and web evidence preservation → Intelligence analysts — systematic evidence collection and case documentation → Fraud investigators — document scams and build evidence packages for reporting → Journalists — verify sources and document online stories with a clear record → Insurance investigators — document claimant activity and build case files → OSINT researchers — organised evidence collection with automatic timelines → Individuals — document harassment, scams, or disputes with a clear evidence trail WebInvestigator only requests the permissions it needs to capture and organise evidence. All data stays on your device. We never see your browsing activity or investigation files.
Show Hidden Elements
Toggle the visibility of hidden elements on a webpage it helps to know whats the website creator wants to hide with you, some time the functions like popup or drop-down show only when you click on them, but after clicking on this extension all the drop-down and hidden elements will will be shown up so you can figure it out whats going on it can help you if you are in a bug bounty program or any kind of ctf challenges sometimes they hides i created it because a website is trying to hide the download button and it help me to reveal it , but everytime i cant go to network panel or source code to look for the exact changes so it just automate the task a little
Hidden APIs
Find & inspect internal APIs, scrape & automate tasks with ease. Ideal for devs, data scientists & web enthusiasts. Take your web development, data science, and web scraping skills to the next level with Hidden APIs, a powerful Chrome extension that reveals hidden APIs and enables you to inspect, scrape, and automate tasks with ease. Reveal hidden APIs: Hidden APIs detects and displays the hidden APIs used by a website, allowing you to inspect and understand how they work. Inspect internal APIs: Use the extension's panel to inspect API requests, responses, and headers, giving you a deeper understanding of how the site's internal APIs function. Scrape and automate tasks: With Hidden APIs, you can extract data from websites using their internal APIs, automate repetitive tasks, and streamline your workflow. Enhance your development skills: Gain insights into how websites are built and how their APIs work, helping you to improve your own development skills and create more efficient solutions. Save time and effort: Automate tasks and reduce the time spent on manual data extraction and inspection. Improve your development skills: Gain a deeper understanding of how websites work and how to build more efficient solutions. Enhance your data science capabilities: Extract data from websites and use it to inform your analysis and insights.
