pncoieihjcmpooceknjajojehmhdedii
The Netlas plugin gives information about where the website is hosted, who owns the IP and what other services and ports are open. This extension is intended to facilitate the work of specialists of the information security. Do you do Bug Bounty? Or is your field of activity - OSINT? Undoubtedly, our plugin will be useful to you. The plugin will allow you to get information about the website you are currently browsing at any time. Just click on our blue spider, and the extension will show you the IP address and domain name details. You will see the location of the object under study, its owner, open ports, and installed services. The extension receives all information from the Netlas.io service, and you can also go from the results to it to get acquainted with the data in more detail: examine the full WHOIS response, view responses, and all DNS records. In addition, the extension can work in automatic mode, passively querying each site you open in the Netlas database and checking for vulnerabilities. To do this, simply enable Smart Logo in the extension settings, then reload the page. Now, every time you visit a site that is potentially vulnerable to some known CVE, the extension logo will change color depending on the vulnerability rating. Attention: the free use of the extension is limited to thirty requests per day without the ability to automatically scan visited sites. To expand the possibilities, you need to register on netlas.io and use your API key.
CyberPad
CyberPad: Your Ultimate Security, Development & Pen-testing Notepad A secure, distraction-free notepad for your security assessments, coding, or penetration testing. Perfect for quickly documenting findings, writing and formatting code, and keeping all your notes organized—right in your browser. 🆕 What's New in v2.2.1 - Live Markdown Preview: Instantly see your formatted notes as professional HTML documents - Settings Dashboard: Customize your exports with company logos, custom footers, and confidentiality levels - Document Branding: Upload your logo and add custom footers for client-ready reports - Confidentiality Markings: Label documents as Public, Private, or Confidential with color-coded headers - Enhanced Export Options: Choose which elements (logo, footer, classification) to include in each preview - Fixed path issues for Linux systems ✨ What CyberPad Does - Keeps Your Notes Private: Everything stays local in your browser—no cloud sync, no external connections. - Preview Your Work: Instantly preview Markdown as formatted HTML with custom branding. - Professional Export Ready: Add company logos, footers, and confidentiality markings for polished reports. - Simplifies Security Work: Effortlessly capture vulnerabilities, bugs, or configuration changes during assessments and bug hunts. - Supports Multiple Languages: Highlight syntax for HTML, JavaScript, Python, PHP, CSS, and many more. - Dark & Minimalist Theme: Less strain on your eyes, more focus on your work. - Easy Saving & Organization: Save multiple findings with timestamps, quickly download notes as Markdown, and stay on top of your work. - Emoji Integration: Add 🛠️, ✅, or ⚠️ as quick status indicators. ⚡ Why You Should Install It - Local-Only Storage: No one sees your notes. Perfect for pen-testing or handling sensitive info. - Live Preview: See your formatted notes instantly before exporting. - Custom Branding: Upload your company logo and add custom footers for professional documentation. - Confidentiality Controls: Mark documents as Public, Private, or Confidential with visual indicators. - Effortless Reporting: Export Markdown files in one click for easy integration into your final reports. - Developer-Friendly: Write code, format it with built-in tools, and reference it later without leaving the browser. - Bug Bounty & Research: Keep track of new vulnerabilities or findings in real time. - Minimal Permissions: Only needs storage, contextMenus, and activeTab—ensuring your system stays secure. 🚀 Built For - Security Assessments: Document each step and vulnerability with professional formatting - Penetration Testing: Quick note-taking during engagements with instant preview - Bug Bounty Hunting: Organized approach to discoveries with branded exports - Development: Syntax highlighting and code snippets - System Administration: Document configurations and updates - Security Research: Compile and structure research data with custom templates ⚙️ Key Features - Live Markdown Preview: See formatted HTML output instantly - Custom Document Branding: Upload logos and add custom footers - Confidentiality Markings: Label documents as Public, Private, or Confidential - Multiple Language Support: HTML, JavaScript, Python, PHP, CSS, and more - Markdown Capabilities: Format your notes for professional reporting - Instant Export: One-click download of notes - Timestamped Entries: Keep track of when you made each discovery - Easy Copy/Paste: Works smoothly for code or text snippets - Bug Reporting System: Quickly log and manage software bugs - Settings Dashboard: Customize your export templates and preferences - Clean Interface: Avoid distractions and focus on your work 🔒 Privacy & Security - Stores notes only in your browser - No external servers or cloud databases - Minimal permissions, strict content security policy - Manifest V3 compliance Install CyberPad and get a lightweight, secure space for all your security findings and development notes—with professional export capabilities right at your fingertips.
FoxyRecon
A Firefox add-on for OSINT investigations FoxyRecon is a Firefox add-on that helps you carry out searching and investigation activities by using over 90 Open Source Intelligence (OSINT) web resources and an internal tool to create graphs supporting the STIX format. Main Features - You can research and analyse your indicators on more than 90 online OSINT resources, by using the popup or the context menu after selecting your indicator. FoxyRecon will detect the type of the indicator you submitted and suggest you the most suitable web resources. - You can harvest and collect all the indicators that are present on the web page you are visiting. FoxyRecon allows you also to download them in CSV file for future analysis. - You can add custom resources to FoxyRecon, for example local tools (e.g.: MISP, OpenCTI and so on) - You can create a graph from the data collected during your investigation analysis. Graphs are based on STIX format to ensure compatibility with other tools. Moreover, FoxyRecon is able to automatically create graphs on the basis of searches you perform via FoxyRecon Some web tools requires some user interactions, such as entering a query and clicking a button to submit it. To perform these actions faster, FoxyRecon will automatically fill input fields on these web pages, with the indicator you are looking for. Currently, FoxyRecon supports the following indicator types: FoxyRecon includes several OSINT web resources. The full list is available on the GitHub repository webpage. Disclaimer Data submitted using this add-on will be sent to external web resources that are not under control of FoxyRecon. For this reason the data submitted will be treated in accordance with the terms of service of the several web resources chosen for analysis. Please, be aware of the tools and resources you are using and do not submit any personal information.
Subdomain Finder - Find Hidden Subdomains
The best Subdomain Finder tool for bug bounty hunters and security researchers. Find hidden subdomains quickly and easily. 🚀 Subdomain Finder - The Essential Tool for Bug Bounty Hunters Discover hidden subdomains quickly and easily with our powerful Subdomain Finder extension. Perfect for bug bounty hunters, security researchers, and penetration testers. Key Features: ✅ Fast & Efficient Scanning ✅ Clean, Modern Interface ✅ Export Results ✅ Copy Subdomains with One Click ✅ Active Domain Status Check ✅ No API Key Required ✅ Zero Configuration Needed How It Works: 1. Click the extension icon 2. Enter a domain name (or use current tab's domain) 3. Click "Scan" to discover subdomains 4. View, copy, or export results Perfect for: • Bug Bounty Hunters • Security Researchers • Penetration Testers • IT Professionals • Security Enthusiasts
DIRFOX - Endpoint Fuzzer for Pentesters
Fuzz endpoints using custom or GitHub-hosted wordlists. Built for security researchers and pentesters. 🔍 DIRFOX – Endpoint Fuzzer for Pentesters Discover hidden endpoints effortlessly, built for professionals. Dirfox is a lightweight yet powerful browser extension designed for penetration testers, bug bounty hunters, and cybersecurity enthusiasts. With a sleek Apple-style interface and real-time scanning capabilities, Dirfox helps you uncover hidden directories and endpoints from any website — fast, accurate, and efficiently. 🚀 Key Features : ✅ Custom & GitHub Wordlist Support Use your own wordlists or fetch popular ones directly from GitHub. 📡 Live Scanning with Status Code Filtering Watch your scan progress in real time and filter results by HTTP status codes (200, 403, 404, etc.). 🧠 Persistent Background Scanning Close the popup or switch tabs — your scan keeps running in the background without interruption. 📊 Auto-Save 200 OK Results Successful results are automatically saved and available in the scan history. 🌗 Modern Apple-style UI with Dark Mode Enjoy a clean, responsive interface with smooth transitions and a dark/light mode toggle. 🛠️ Full Scan Control Start, stop, or restart your scan anytime with intuitive controls. 🧩 Fullscreen Monitoring Mode Track scans in an immersive fullscreen view — perfect for focused workflows. 🧼 Clear History Button Easily delete all scan history with a single click. ❤️ Built-in Author Page & Support Links Learn more about the developer, explore other tools, and support the project directly from the extension. 🔒 Why Dirfox? Dirfox isn't just another endpoint scanner — it's a must-have tool that gives you: - Faster, smarter endpoint fuzzing. - Real-time feedback with clean visual progress. - Auto-saved results for efficient analysis. - A smooth, elegant user experience inspired by Apple-style design. Perfect for CTFs, bug bounty programs, and professional pentesting projects. 💡 Ready to uncover the hidden? 📥 Install Dirfox now and take your recon to the next level.
