pdepablkdfgdadoleeghhajaapcbilio
Adds a widget to GitLab merge request page showing vulnerabilities detected by Container Scanning. Update: Now also see Medium vulnerabilities in the widget. Affected version number is included in the widget. This extension adds a widget in the Gitlab merge request page showing critical and high vulnerabilities of a container image generated in the associated pipeline. A container scanning job must exist in the pipeline. This job must generate a container scanning report artifact. To add a container scanning job, follow the steps defined here: https://docs.gitlab.com/ee/user/application_security/container_scanning/ The free version of Gitlab supports container scanning but does not support decoration of the merge request with vulnerability details. This extension fills that gap by decorating the merge request with a vulnerability widget.
DOM XSS Highlighter — Pro
Highlights user-controlled reflections in DOM to help detect risky contexts. Run only on sites you own or may test. DOM XSS Highlighter helps developers and security testers quickly spot user-controlled reflections inside a webpage’s DOM. By highlighting URL parameters, hash fragments, and other inputs that appear in risky contexts, it makes it easier to catch potential security issues during development and QA. ✨ Features • On-demand scanning (runs only when you click the extension) • Highlights user input in text, HTML, attributes, and scripts • Quick “rescan” and “clear” controls for fast testing • Click highlighted text to copy a structured JSON report • Local-only: no data ever leaves your browser Simple interface with professional security look ⚠️ Note: For educational and authorized testing only. Use on websites you own or have explicit permission to test.
Malware & Vulnerability Scanner
A Chrome extension for scanning files, URLs, and analyzing CVE vulnerabilities 🔍 Scan files and URLs for malware, analyze CVE vulnerabilities, and enhance your browsing security with real-time threat detection. 🚀 Malware & Vulnerability Scanner is a powerful security tool that helps protect you from online threats and software vulnerabilities. This extension combines multiple security features into one easy-to-use interface. Key Features: 📂 File Scanning - 🔬 Scan files for malware and viruses - 📊 Get detailed threat analysis reports - ⚡ Powered by VirusTotal's comprehensive scanning engine 🌐 URL Safety Check - 🔒 Check websites for potential security threats - ⚠️ Real-time malicious URL detection - 🛡️ Safe Browsing API integration for enhanced protection 🔍 CVE Vulnerability Analysis - 🔎 Search and analyze Common Vulnerabilities and Exposures (CVEs) - 📝 Get detailed vulnerability information - 🔔 Track security advisories and patches - 📚 Historical vulnerability data access 💻 User-Friendly Interface - ✨ Clean, modern design - 📊 Easy-to-read scan results - 📈 Progress tracking for scans - 🕒 Recent search history Perfect for: • 🔍 Security researchers • 👨💻 System administrators • 👩💻 Developers • 🛡️ Privacy-conscious users • 🌐 Anyone concerned about online security How to Use: 1. 🖱️ Click the extension icon in your toolbar 2. 📋 Choose your scanning option (File, URL, or CVE) 3. ⌨️ Enter your query or select a file 4. ⚡ Get instant results with detailed security information Privacy Policy: 🔒 This extension uses the following APIs for scanning: - 🔍 VirusTotal API for file scanning - 🛡️ Google Safe Browsing API for URL checking - 📚 NVD Database for CVE information 🔐 No personal data is collected or stored outside of your local browser storage. Screenshots Description 1. 🖥️ Main Interface - Shows the clean, modern interface with scanning options 2. 📂 File Scan Results - Displays detailed malware scan results 3. 🌐 URL Safety Check - Shows URL scanning and safety status 4. 🔍 CVE Search - Demonstrates vulnerability search and analysis 5. 📊 History View - Shows the recent scans and searches
Beagle Security Web Assessment
Find surface level vulnerabilities in your web applications. Beagle Security's free website security assessment allows you to gain a preliminary understanding of your website's security posture. You can fix the issues by following the remediation procedures to improve your website's security. Do you need an in-depth security assessment? Beagle Security also offers an in-depth analysis of your website’s security to uncover all the latest vulnerabilities. With a coverage of 3000+ test cases, you can always be one step ahead of the bad actors. Here's what you get with an in-depth security assessment Beagle Security is technology and framework agnostic, giving you the complete flexibility to security test any web apps no matter how it is built. Legacy or the latest tech stack – the choice is yours. Staying secure from the latest vulnerabilities can be a challenge when you rely on manual penetration testing. With Beagle Security, you can conduct periodic security tests with ease, either by scheduling them or running them in your CI/CD pipeline. Most of the critical functionalities in an application exist behind the login page. Running authenticated security tests allows you to make sure that most of the attack surface that exists on the authenticated pages are not left unattended. Staying protected from zero days vulnerabilities used to be hard, but not anymore. You are backed by a dedicated team of security researchers that is always on the hunt for the latest zero-days and adding them to our vulnerability index. Intelligence for your AppSec Less false positives, support for multiple login authentication types, autonomously deciding attack scenarios - sounds too good to be true. That is what Beagle Security’s AI-powered core brings to the table. Work with your tools Beagle Security integrates with your bug tracking tools, communication apps and CI/CD pipeline tools, helping you to save time and focus on your priorities. Complete a one-time setup and experience a seamless application security workflow.
Hunter Search
Otimize buscas para pentest e bug bounty com dorks automáticos. Hunter Search – Dorks Inteligentes para Pentest e Bug Bounty Otimize suas buscas de segurança! O Hunter Search é a extensão definitiva para profissionais de pentest, bug bounty hunters e entusiastas de segurança que desejam encontrar informações sensíveis, vulnerabilidades e exposições públicas de forma rápida, prática e inteligente. Principais Funcionalidades - Montagem Avançada de Dorks: Combine palavras-chave, múltiplos sites, operadores Google e dorks prontos (IDOR, XSS, SQLi, AWS, arquivos sensíveis, leaks, painéis admin e muito mais) em uma interface intuitiva. - Pré-visualização em Tempo Real: Veja como ficará sua query antes de buscar, garantindo precisão e controle total. - Busca Multi-Plataforma: Escolha entre Google, Bing ou DuckDuckGo para ampliar suas possibilidades de descoberta. - Histórico e Favoritos: Salve e reutilize suas queries mais usadas. Nunca mais perca aquele dork perfeito! - Botões Rápidos: Copie, limpe ou favorite suas buscas com apenas um clique. - Modo Escuro/Claro Automático: Interface moderna, responsiva e confortável para qualquer hora do dia. - Tooltips e Ajuda: Dicas rápidas em cada campo para facilitar o uso, mesmo para quem está começando. Exemplos de uso - Encontrar vazamentos de chaves AWS em repositórios públicos. - Buscar arquivos sensíveis (.env, config, credentials) em sites e domínios específicos. - Descobrir endpoints de administração, painéis e dashboards expostos. - Pesquisar por vulnerabilidades comuns (IDOR, XSS, SQLi) em qualquer site. - Montar dorks customizados para investigações avançadas. Por que usar o Hunter Search? - Produtividade: Economize tempo montando queries complexas com poucos cliques. - Personalização: Adapte a busca ao seu objetivo, seja para bug bounty, CTF, OSINT ou auditoria. - Praticidade: Tudo em um só lugar, sem precisar decorar dorks ou operadores. Hunter Search Otimize suas buscas. Encontre vulnerabilidades. Eleve seu bug bounty!
