hcljccijmfgjfgnoimfgaljjgocfcmgp
CyberPad: Your Ultimate Security, Development & Pen-testing Notepad A secure, distraction-free notepad for your security assessments, coding, or penetration testing. Perfect for quickly documenting findings, writing and formatting code, and keeping all your notes organized—right in your browser. 🆕 What's New in v2.2.1 - Live Markdown Preview: Instantly see your formatted notes as professional HTML documents - Settings Dashboard: Customize your exports with company logos, custom footers, and confidentiality levels - Document Branding: Upload your logo and add custom footers for client-ready reports - Confidentiality Markings: Label documents as Public, Private, or Confidential with color-coded headers - Enhanced Export Options: Choose which elements (logo, footer, classification) to include in each preview - Fixed path issues for Linux systems ✨ What CyberPad Does - Keeps Your Notes Private: Everything stays local in your browser—no cloud sync, no external connections. - Preview Your Work: Instantly preview Markdown as formatted HTML with custom branding. - Professional Export Ready: Add company logos, footers, and confidentiality markings for polished reports. - Simplifies Security Work: Effortlessly capture vulnerabilities, bugs, or configuration changes during assessments and bug hunts. - Supports Multiple Languages: Highlight syntax for HTML, JavaScript, Python, PHP, CSS, and many more. - Dark & Minimalist Theme: Less strain on your eyes, more focus on your work. - Easy Saving & Organization: Save multiple findings with timestamps, quickly download notes as Markdown, and stay on top of your work. - Emoji Integration: Add 🛠️, ✅, or ⚠️ as quick status indicators. ⚡ Why You Should Install It - Local-Only Storage: No one sees your notes. Perfect for pen-testing or handling sensitive info. - Live Preview: See your formatted notes instantly before exporting. - Custom Branding: Upload your company logo and add custom footers for professional documentation. - Confidentiality Controls: Mark documents as Public, Private, or Confidential with visual indicators. - Effortless Reporting: Export Markdown files in one click for easy integration into your final reports. - Developer-Friendly: Write code, format it with built-in tools, and reference it later without leaving the browser. - Bug Bounty & Research: Keep track of new vulnerabilities or findings in real time. - Minimal Permissions: Only needs storage, contextMenus, and activeTab—ensuring your system stays secure. 🚀 Built For - Security Assessments: Document each step and vulnerability with professional formatting - Penetration Testing: Quick note-taking during engagements with instant preview - Bug Bounty Hunting: Organized approach to discoveries with branded exports - Development: Syntax highlighting and code snippets - System Administration: Document configurations and updates - Security Research: Compile and structure research data with custom templates ⚙️ Key Features - Live Markdown Preview: See formatted HTML output instantly - Custom Document Branding: Upload logos and add custom footers - Confidentiality Markings: Label documents as Public, Private, or Confidential - Multiple Language Support: HTML, JavaScript, Python, PHP, CSS, and more - Markdown Capabilities: Format your notes for professional reporting - Instant Export: One-click download of notes - Timestamped Entries: Keep track of when you made each discovery - Easy Copy/Paste: Works smoothly for code or text snippets - Bug Reporting System: Quickly log and manage software bugs - Settings Dashboard: Customize your export templates and preferences - Clean Interface: Avoid distractions and focus on your work 🔒 Privacy & Security - Stores notes only in your browser - No external servers or cloud databases - Minimal permissions, strict content security policy - Manifest V3 compliance Install CyberPad and get a lightweight, secure space for all your security findings and development notes—with professional export capabilities right at your fingertips.
DOM XSS Highlighter — Pro
Highlights user-controlled reflections in DOM to help detect risky contexts. Run only on sites you own or may test. DOM XSS Highlighter helps developers and security testers quickly spot user-controlled reflections inside a webpage’s DOM. By highlighting URL parameters, hash fragments, and other inputs that appear in risky contexts, it makes it easier to catch potential security issues during development and QA. ✨ Features • On-demand scanning (runs only when you click the extension) • Highlights user input in text, HTML, attributes, and scripts • Quick “rescan” and “clear” controls for fast testing • Click highlighted text to copy a structured JSON report • Local-only: no data ever leaves your browser Simple interface with professional security look ⚠️ Note: For educational and authorized testing only. Use on websites you own or have explicit permission to test.
DIRFOX - Endpoint Fuzzer for Pentesters
Fuzz endpoints using custom or GitHub-hosted wordlists. Built for security researchers and pentesters. 🔍 DIRFOX – Endpoint Fuzzer for Pentesters Discover hidden endpoints effortlessly, built for professionals. Dirfox is a lightweight yet powerful browser extension designed for penetration testers, bug bounty hunters, and cybersecurity enthusiasts. With a sleek Apple-style interface and real-time scanning capabilities, Dirfox helps you uncover hidden directories and endpoints from any website — fast, accurate, and efficiently. 🚀 Key Features : ✅ Custom & GitHub Wordlist Support Use your own wordlists or fetch popular ones directly from GitHub. 📡 Live Scanning with Status Code Filtering Watch your scan progress in real time and filter results by HTTP status codes (200, 403, 404, etc.). 🧠 Persistent Background Scanning Close the popup or switch tabs — your scan keeps running in the background without interruption. 📊 Auto-Save 200 OK Results Successful results are automatically saved and available in the scan history. 🌗 Modern Apple-style UI with Dark Mode Enjoy a clean, responsive interface with smooth transitions and a dark/light mode toggle. 🛠️ Full Scan Control Start, stop, or restart your scan anytime with intuitive controls. 🧩 Fullscreen Monitoring Mode Track scans in an immersive fullscreen view — perfect for focused workflows. 🧼 Clear History Button Easily delete all scan history with a single click. ❤️ Built-in Author Page & Support Links Learn more about the developer, explore other tools, and support the project directly from the extension. 🔒 Why Dirfox? Dirfox isn't just another endpoint scanner — it's a must-have tool that gives you: - Faster, smarter endpoint fuzzing. - Real-time feedback with clean visual progress. - Auto-saved results for efficient analysis. - A smooth, elegant user experience inspired by Apple-style design. Perfect for CTFs, bug bounty programs, and professional pentesting projects. 💡 Ready to uncover the hidden? 📥 Install Dirfox now and take your recon to the next level.
VAPT Assistant Pro+
Advanced VAPT toolkit with AI, security headers, WAF detection, DNS/WHOIS tools, subdomain scanner, and VirusTotal integration. Unlock powerful web security and penetration testing capabilities with VAPT Assistant Pro+, the ultimate Chrome extension for pentesters, ethical hackers, and cyber security professionals. This all-in-one pentest tool and penetration testing toolkit provides everything you need for efficient vulnerability assessment, ethical hacking, and security testing directly in your browser. VAPT Assistant Pro+ offers a wide range of pentesting tools for comprehensive vulnerability assessment and penetration testing (VAPT), making it an essential tool for security analysts, bug bounty hunters, and IT professionals. Conduct advanced penetration testing, automate vulnerability scanning, analyze web application security, and strengthen your cyber security posture—all with an intuitive, user-friendly interface. Key features include web application pentesting, automated VAPT scans, cyber security analysis, ethical hacking tools, and real-time security monitoring. Whether you are performing manual security audits or automated tests, this extension simplifies your workflow and boosts your productivity. This extension helps you during a web application penetration testing and report writing so it was a checklist management tool pentester can also add custom bug bounty checklist also this extension is secure using MPIN pentest tool, pentesting tool, penetration testing tool, pentest toolkit, cyber security tool, ethical hacking tool, VAPT, vulnerability assessment, security testing, web application security, bug bounty, security analyst, IT security, browser extension, web security tool, automated pentest. Take your penetration testing and cyber security efforts to the next level with VAPT Assistant Pro+, the best Chrome extension for ethical hackers and penetration testers!
Hunter Search
Otimize buscas para pentest e bug bounty com dorks automáticos. Hunter Search – Dorks Inteligentes para Pentest e Bug Bounty Otimize suas buscas de segurança! O Hunter Search é a extensão definitiva para profissionais de pentest, bug bounty hunters e entusiastas de segurança que desejam encontrar informações sensíveis, vulnerabilidades e exposições públicas de forma rápida, prática e inteligente. Principais Funcionalidades - Montagem Avançada de Dorks: Combine palavras-chave, múltiplos sites, operadores Google e dorks prontos (IDOR, XSS, SQLi, AWS, arquivos sensíveis, leaks, painéis admin e muito mais) em uma interface intuitiva. - Pré-visualização em Tempo Real: Veja como ficará sua query antes de buscar, garantindo precisão e controle total. - Busca Multi-Plataforma: Escolha entre Google, Bing ou DuckDuckGo para ampliar suas possibilidades de descoberta. - Histórico e Favoritos: Salve e reutilize suas queries mais usadas. Nunca mais perca aquele dork perfeito! - Botões Rápidos: Copie, limpe ou favorite suas buscas com apenas um clique. - Modo Escuro/Claro Automático: Interface moderna, responsiva e confortável para qualquer hora do dia. - Tooltips e Ajuda: Dicas rápidas em cada campo para facilitar o uso, mesmo para quem está começando. Exemplos de uso - Encontrar vazamentos de chaves AWS em repositórios públicos. - Buscar arquivos sensíveis (.env, config, credentials) em sites e domínios específicos. - Descobrir endpoints de administração, painéis e dashboards expostos. - Pesquisar por vulnerabilidades comuns (IDOR, XSS, SQLi) em qualquer site. - Montar dorks customizados para investigações avançadas. Por que usar o Hunter Search? - Produtividade: Economize tempo montando queries complexas com poucos cliques. - Personalização: Adapte a busca ao seu objetivo, seja para bug bounty, CTF, OSINT ou auditoria. - Praticidade: Tudo em um só lugar, sem precisar decorar dorks ou operadores. Hunter Search Otimize suas buscas. Encontre vulnerabilidades. Eleve seu bug bounty!
