kdogkalclfcnhknehcpghfkjjlcfnhle
A fully offline, browser-based HTTP request testing tool for cybersecurity researchers CyberPost Lab - Comprehensive Web Testing Tool for Security Researchers Brief Description CyberPost Lab is a specialized Chrome extension that enables security researchers, penetration testers, and information security specialists to conduct comprehensive web tests completely offline. The tool combines an advanced payload generator, encoding/decoding utilities, and an integrated HTTP request laboratory, all within a modern, user-friendly interface. Key Features Integrated HTTP Request Laboratory - Send and receive HTTP/HTTPS requests using any method (GET, POST, PUT, DELETE, and more) - Full support for custom parameters and headers - View responses in formatted JSON, raw text, or HTML preview - Create mock requests for testing without an internet connection - Automatic session persistence between browser sessions Encoding and Decoding Tools - Easily encode and decode Base64 - URL encoding and decoding - HTML entity conversion and reversal - JWT decoding with structured content display Specialized Payload Generator A comprehensive collection of ready-to-use test payloads for immediate security testing: - XSS (Cross-Site Scripting) - SQL Injection - Command Injection - LFI (Local File Inclusion) - SSRF (Server-Side Request Forgery) - RCE (Remote Code Execution) - SSTI (Server-Side Template Injection) - XXE (XML External Entity) - CRLF Injection - JSON Injection - Host Header Injection - Windows LFI Who Is This Tool For ? CyberPost Lab targets professionals in the cybersecurity field, including: - Ethical hackers and security researchers - Web developers concerned with application security - Information security students and practitioners - Security incident response teams Additional Features - Modern user interface inspired by professional cybersecurity tools - Smooth and responsive user experience - Works completely offline without requiring an internet connection - Maintains data privacy - all operations occur locally on your device - Compatible with the latest versions of Chrome browser Developed by the Ghostbyte® Team Created by a team specialized in information security with a focus on providing practical tools for security professionals. CyberPost Lab - Your Essential Web Security Testing Toolkit. have fun
CyberPad
CyberPad: Your Ultimate Security, Development & Pen-testing Notepad A secure, distraction-free notepad for your security assessments, coding, or penetration testing. Perfect for quickly documenting findings, writing and formatting code, and keeping all your notes organized—right in your browser. 🆕 What's New in v2.2.1 - Live Markdown Preview: Instantly see your formatted notes as professional HTML documents - Settings Dashboard: Customize your exports with company logos, custom footers, and confidentiality levels - Document Branding: Upload your logo and add custom footers for client-ready reports - Confidentiality Markings: Label documents as Public, Private, or Confidential with color-coded headers - Enhanced Export Options: Choose which elements (logo, footer, classification) to include in each preview - Fixed path issues for Linux systems ✨ What CyberPad Does - Keeps Your Notes Private: Everything stays local in your browser—no cloud sync, no external connections. - Preview Your Work: Instantly preview Markdown as formatted HTML with custom branding. - Professional Export Ready: Add company logos, footers, and confidentiality markings for polished reports. - Simplifies Security Work: Effortlessly capture vulnerabilities, bugs, or configuration changes during assessments and bug hunts. - Supports Multiple Languages: Highlight syntax for HTML, JavaScript, Python, PHP, CSS, and many more. - Dark & Minimalist Theme: Less strain on your eyes, more focus on your work. - Easy Saving & Organization: Save multiple findings with timestamps, quickly download notes as Markdown, and stay on top of your work. - Emoji Integration: Add 🛠️, ✅, or ⚠️ as quick status indicators. ⚡ Why You Should Install It - Local-Only Storage: No one sees your notes. Perfect for pen-testing or handling sensitive info. - Live Preview: See your formatted notes instantly before exporting. - Custom Branding: Upload your company logo and add custom footers for professional documentation. - Confidentiality Controls: Mark documents as Public, Private, or Confidential with visual indicators. - Effortless Reporting: Export Markdown files in one click for easy integration into your final reports. - Developer-Friendly: Write code, format it with built-in tools, and reference it later without leaving the browser. - Bug Bounty & Research: Keep track of new vulnerabilities or findings in real time. - Minimal Permissions: Only needs storage, contextMenus, and activeTab—ensuring your system stays secure. 🚀 Built For - Security Assessments: Document each step and vulnerability with professional formatting - Penetration Testing: Quick note-taking during engagements with instant preview - Bug Bounty Hunting: Organized approach to discoveries with branded exports - Development: Syntax highlighting and code snippets - System Administration: Document configurations and updates - Security Research: Compile and structure research data with custom templates ⚙️ Key Features - Live Markdown Preview: See formatted HTML output instantly - Custom Document Branding: Upload logos and add custom footers - Confidentiality Markings: Label documents as Public, Private, or Confidential - Multiple Language Support: HTML, JavaScript, Python, PHP, CSS, and more - Markdown Capabilities: Format your notes for professional reporting - Instant Export: One-click download of notes - Timestamped Entries: Keep track of when you made each discovery - Easy Copy/Paste: Works smoothly for code or text snippets - Bug Reporting System: Quickly log and manage software bugs - Settings Dashboard: Customize your export templates and preferences - Clean Interface: Avoid distractions and focus on your work 🔒 Privacy & Security - Stores notes only in your browser - No external servers or cloud databases - Minimal permissions, strict content security policy - Manifest V3 compliance Install CyberPad and get a lightweight, secure space for all your security findings and development notes—with professional export capabilities right at your fingertips.
Subdomain Finder - Find Hidden Subdomains
The best Subdomain Finder tool for bug bounty hunters and security researchers. Find hidden subdomains quickly and easily. 🚀 Subdomain Finder - The Essential Tool for Bug Bounty Hunters Discover hidden subdomains quickly and easily with our powerful Subdomain Finder extension. Perfect for bug bounty hunters, security researchers, and penetration testers. Key Features: ✅ Fast & Efficient Scanning ✅ Clean, Modern Interface ✅ Export Results ✅ Copy Subdomains with One Click ✅ Active Domain Status Check ✅ No API Key Required ✅ Zero Configuration Needed How It Works: 1. Click the extension icon 2. Enter a domain name (or use current tab's domain) 3. Click "Scan" to discover subdomains 4. View, copy, or export results Perfect for: • Bug Bounty Hunters • Security Researchers • Penetration Testers • IT Professionals • Security Enthusiasts
SecuriScanX
Harden your input points - detect SQLi, XSS & CMDi within seconds. 𝗦𝗲𝗰𝘂𝗿𝗶𝗦𝗰𝗮𝗻𝗫: 𝗬𝗼𝘂𝗿 𝗢𝗻𝗲-𝗖𝗹𝗶𝗰𝗸 𝗪𝗲𝗯𝘀𝗶𝘁𝗲 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗚𝘂𝗮𝗿𝗱 SecuriScanX is a powerful but easy-to-use tool designed to keep websites safe from hackers. It works like a digital security guard, automatically checking any web page for common security weaknesses in seconds. 🚀 𝙒𝙝𝙮 𝙞𝙩’𝙨 𝙖 𝙂𝙖𝙢𝙚-𝘾𝙝𝙖𝙣𝙜𝙚𝙧 𝙛𝙤𝙧 𝘽𝙪𝙜 𝙃𝙪𝙣𝙩𝙚𝙧𝙨 & 𝙋𝙚𝙣𝙩𝙚𝙨𝙩𝙚𝙧𝙨 For those in Web Pentesting and Bug Bounty, speed and efficiency are everything. SecuriScanX acts as your first line of attack during the reconnaissance phase: ▶ 𝗙𝗮𝘀𝘁 𝗦𝘂𝗿𝗳𝗮𝗰𝗲 𝗔𝗻𝗮𝗹𝘆𝘀𝗶𝘀: Instead of manually testing every single input, run SecuriScanX to quickly identify which fields are vulnerable to SQLi, XSS, or Command Injection. ▶ 𝗜𝗻𝗳𝗼𝗿𝗺𝗮𝘁𝗶𝗼𝗻 𝗚𝗮𝘁𝗵𝗲𝗿𝗶𝗻𝗴 (𝗣𝗮𝘀𝘀𝗶𝘃𝗲 𝗦𝗰𝗮𝗻): It automatically uncovers hidden details like sensitive info in HTML comments, missing security headers, and cookie configurations that could lead to bigger exploits. ▶ 𝗜𝗻𝘁𝗲𝗹𝗹𝗶𝗴𝗲𝗻𝘁 𝗙𝘂𝘇𝘇𝗶𝗻𝗴: The tool doesn't just "guess"; it uses intelligent context detection to send the right payloads to the right fields (e.g., login-specific payloads for auth forms). ▶ 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗲𝗱 "𝗟𝗼𝘄-𝗛𝗮𝗻𝗴𝗶𝗻𝗴 𝗙𝗿𝘂𝗶𝘁" 𝗗𝗶𝘀𝗰𝗼𝘃𝗲𝗿𝘆: It saves you hours of manual work by flagging obvious vulnerabilities instantly, allowing you to focus your energy on more complex manual exploits. 𝙒𝙝𝙤 𝙞𝙨 𝙞𝙩 𝙛𝙤𝙧? ▶ 𝗕𝘂𝗴 𝗛𝘂𝗻𝘁𝗲𝗿𝘀 & 𝗣𝗲𝗻𝘁𝗲𝘀𝘁𝗲𝗿𝘀: To speed up their initial testing and find easy vulnerabilities. ▶ 𝗗𝗲𝘃𝗲𝗹𝗼𝗽𝗲𝗿𝘀: To quickly find and fix security bugs before they go live. ▶ 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗟𝗲𝗮𝗿𝗻𝗲𝗿𝘀: To understand how real-world cyber threats look and work. 𝙆𝙚𝙮 𝙁𝙚𝙖𝙩𝙪𝙧𝙚𝙨: ▶ 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗰 𝗦𝗰𝗮𝗻𝗻𝗶𝗻𝗴: Scans input boxes (username, password, search) to see if they are properly protected. ▶ 𝗢𝗪𝗔𝗦𝗣 𝗧𝗼𝗽 𝟭𝟬 𝗙𝗼𝗰𝘂𝘀: Detects critical issues like SQLi, XSS, and Command Injections (CMDi). ▶ 𝗣𝗮𝘀𝘀𝗶𝘃𝗲 𝗥𝗲𝗰𝗼𝗻𝗻𝗮𝗶𝘀𝘀𝗮𝗻𝗰𝗲: Inspects HTML comments, Security Headers, and Cookies for bad configurations. ▶ 𝗩𝗶𝘀𝘂𝗮𝗹 𝗛𝗶𝗴𝗵𝗹𝗶𝗴𝗵𝘁𝗲𝗿: If a weakness is found, it highlights the exact area on the webpage in red or orange.
DIRFOX - Endpoint Fuzzer for Pentesters
Fuzz endpoints using custom or GitHub-hosted wordlists. Built for security researchers and pentesters. 🔍 DIRFOX – Endpoint Fuzzer for Pentesters Discover hidden endpoints effortlessly, built for professionals. Dirfox is a lightweight yet powerful browser extension designed for penetration testers, bug bounty hunters, and cybersecurity enthusiasts. With a sleek Apple-style interface and real-time scanning capabilities, Dirfox helps you uncover hidden directories and endpoints from any website — fast, accurate, and efficiently. 🚀 Key Features : ✅ Custom & GitHub Wordlist Support Use your own wordlists or fetch popular ones directly from GitHub. 📡 Live Scanning with Status Code Filtering Watch your scan progress in real time and filter results by HTTP status codes (200, 403, 404, etc.). 🧠 Persistent Background Scanning Close the popup or switch tabs — your scan keeps running in the background without interruption. 📊 Auto-Save 200 OK Results Successful results are automatically saved and available in the scan history. 🌗 Modern Apple-style UI with Dark Mode Enjoy a clean, responsive interface with smooth transitions and a dark/light mode toggle. 🛠️ Full Scan Control Start, stop, or restart your scan anytime with intuitive controls. 🧩 Fullscreen Monitoring Mode Track scans in an immersive fullscreen view — perfect for focused workflows. 🧼 Clear History Button Easily delete all scan history with a single click. ❤️ Built-in Author Page & Support Links Learn more about the developer, explore other tools, and support the project directly from the extension. 🔒 Why Dirfox? Dirfox isn't just another endpoint scanner — it's a must-have tool that gives you: - Faster, smarter endpoint fuzzing. - Real-time feedback with clean visual progress. - Auto-saved results for efficient analysis. - A smooth, elegant user experience inspired by Apple-style design. Perfect for CTFs, bug bounty programs, and professional pentesting projects. 💡 Ready to uncover the hidden? 📥 Install Dirfox now and take your recon to the next level.
