dbdhbjlaphkgkedglalhagokgkogjhbg
Fuzz endpoints using custom or GitHub-hosted wordlists. Built for security researchers and pentesters. 🔍 DIRFOX – Endpoint Fuzzer for Pentesters Discover hidden endpoints effortlessly, built for professionals. Dirfox is a lightweight yet powerful browser extension designed for penetration testers, bug bounty hunters, and cybersecurity enthusiasts. With a sleek Apple-style interface and real-time scanning capabilities, Dirfox helps you uncover hidden directories and endpoints from any website — fast, accurate, and efficiently. 🚀 Key Features : ✅ Custom & GitHub Wordlist Support Use your own wordlists or fetch popular ones directly from GitHub. 📡 Live Scanning with Status Code Filtering Watch your scan progress in real time and filter results by HTTP status codes (200, 403, 404, etc.). 🧠 Persistent Background Scanning Close the popup or switch tabs — your scan keeps running in the background without interruption. 📊 Auto-Save 200 OK Results Successful results are automatically saved and available in the scan history. 🌗 Modern Apple-style UI with Dark Mode Enjoy a clean, responsive interface with smooth transitions and a dark/light mode toggle. 🛠️ Full Scan Control Start, stop, or restart your scan anytime with intuitive controls. 🧩 Fullscreen Monitoring Mode Track scans in an immersive fullscreen view — perfect for focused workflows. 🧼 Clear History Button Easily delete all scan history with a single click. ❤️ Built-in Author Page & Support Links Learn more about the developer, explore other tools, and support the project directly from the extension. 🔒 Why Dirfox? Dirfox isn't just another endpoint scanner — it's a must-have tool that gives you: - Faster, smarter endpoint fuzzing. - Real-time feedback with clean visual progress. - Auto-saved results for efficient analysis. - A smooth, elegant user experience inspired by Apple-style design. Perfect for CTFs, bug bounty programs, and professional pentesting projects. 💡 Ready to uncover the hidden? 📥 Install Dirfox now and take your recon to the next level.
CyberPost Lab
A fully offline, browser-based HTTP request testing tool for cybersecurity researchers CyberPost Lab - Comprehensive Web Testing Tool for Security Researchers Brief Description CyberPost Lab is a specialized Chrome extension that enables security researchers, penetration testers, and information security specialists to conduct comprehensive web tests completely offline. The tool combines an advanced payload generator, encoding/decoding utilities, and an integrated HTTP request laboratory, all within a modern, user-friendly interface. Key Features Integrated HTTP Request Laboratory - Send and receive HTTP/HTTPS requests using any method (GET, POST, PUT, DELETE, and more) - Full support for custom parameters and headers - View responses in formatted JSON, raw text, or HTML preview - Create mock requests for testing without an internet connection - Automatic session persistence between browser sessions Encoding and Decoding Tools - Easily encode and decode Base64 - URL encoding and decoding - HTML entity conversion and reversal - JWT decoding with structured content display Specialized Payload Generator A comprehensive collection of ready-to-use test payloads for immediate security testing: - XSS (Cross-Site Scripting) - SQL Injection - Command Injection - LFI (Local File Inclusion) - SSRF (Server-Side Request Forgery) - RCE (Remote Code Execution) - SSTI (Server-Side Template Injection) - XXE (XML External Entity) - CRLF Injection - JSON Injection - Host Header Injection - Windows LFI Who Is This Tool For ? CyberPost Lab targets professionals in the cybersecurity field, including: - Ethical hackers and security researchers - Web developers concerned with application security - Information security students and practitioners - Security incident response teams Additional Features - Modern user interface inspired by professional cybersecurity tools - Smooth and responsive user experience - Works completely offline without requiring an internet connection - Maintains data privacy - all operations occur locally on your device - Compatible with the latest versions of Chrome browser Developed by the Ghostbyte® Team Created by a team specialized in information security with a focus on providing practical tools for security professionals. CyberPost Lab - Your Essential Web Security Testing Toolkit. have fun
Exploit Observer
A.R.P. Syndicate's Exploit Observer Extension downloads a list of exploits for any VIDs detected on the website you're visiting. Exploit Observer, A product by A.R.P. Syndicate, aggregates & interprets exploit/vulnerability data from all over the Internet. Consequently, it has evolved into The World's Largest Exploit & Vulnerability Intelligence Database and is freely accessible to all.
Netlas.io
The Netlas plugin gives information about where the website is hosted, who owns the IP and what other services and ports are open. This extension is intended to facilitate the work of specialists of the information security. Do you do Bug Bounty? Or is your field of activity - OSINT? Undoubtedly, our plugin will be useful to you. The plugin will allow you to get information about the website you are currently browsing at any time. Just click on our blue spider, and the extension will show you the IP address and domain name details. You will see the location of the object under study, its owner, open ports, and installed services. The extension receives all information from the Netlas.io service, and you can also go from the results to it to get acquainted with the data in more detail: examine the full WHOIS response, view responses, and all DNS records. In addition, the extension can work in automatic mode, passively querying each site you open in the Netlas database and checking for vulnerabilities. To do this, simply enable Smart Logo in the extension settings, then reload the page. Now, every time you visit a site that is potentially vulnerable to some known CVE, the extension logo will change color depending on the vulnerability rating. Attention: the free use of the extension is limited to thirty requests per day without the ability to automatically scan visited sites. To expand the possibilities, you need to register on netlas.io and use your API key.
VAPT Assistant Pro+
Advanced VAPT toolkit with AI, security headers, WAF detection, DNS/WHOIS tools, subdomain scanner, and VirusTotal integration. Unlock powerful web security and penetration testing capabilities with VAPT Assistant Pro+, the ultimate Chrome extension for pentesters, ethical hackers, and cyber security professionals. This all-in-one pentest tool and penetration testing toolkit provides everything you need for efficient vulnerability assessment, ethical hacking, and security testing directly in your browser. VAPT Assistant Pro+ offers a wide range of pentesting tools for comprehensive vulnerability assessment and penetration testing (VAPT), making it an essential tool for security analysts, bug bounty hunters, and IT professionals. Conduct advanced penetration testing, automate vulnerability scanning, analyze web application security, and strengthen your cyber security posture—all with an intuitive, user-friendly interface. Key features include web application pentesting, automated VAPT scans, cyber security analysis, ethical hacking tools, and real-time security monitoring. Whether you are performing manual security audits or automated tests, this extension simplifies your workflow and boosts your productivity. This extension helps you during a web application penetration testing and report writing so it was a checklist management tool pentester can also add custom bug bounty checklist also this extension is secure using MPIN pentest tool, pentesting tool, penetration testing tool, pentest toolkit, cyber security tool, ethical hacking tool, VAPT, vulnerability assessment, security testing, web application security, bug bounty, security analyst, IT security, browser extension, web security tool, automated pentest. Take your penetration testing and cyber security efforts to the next level with VAPT Assistant Pro+, the best Chrome extension for ethical hackers and penetration testers!
