Evil fox

We will be discussing about firefox extensions which can assist the security professionals and pentesters during security assessment. It really feels  like firefox is on steroids.

Cookie manager

Play with the cookies.

cookie manager plus

DNS Queries.com tester

DNS queries

Foxy proxy

Easily switch between multiple proxies and settings.

foxy proxy

Fireshot

Take a full web page screenshot. Useful for reporting.

full web page screenshot

Hack bar

Stored scripts to test for code Injection and execute it right away.

Hackbar

Passive recon

Results from multiple recon tools bundled in one.

passive recon

Show IP

This one works better in google. Each site you browse, you get the information about the website right away. Information includes – IP address, location, IP blacklisted, who is result etc.

Show IP

URL Flipper

Change the URL parameters and get the response.

URL flipper

User Agent Swicher

Mask yourself and check how the website responds to different user agents.

User agent swicher

Wappalyser

It’s really cool to know what he website uses. Let’s check for soft targets.

wappalyser

Web Site Plus

A few more testing tricks bundled together.

website + test tools

XSS Me

Preloaded with scripts to test for forms which may have XSS vulnerability present. We can add custom scripts as well to match our needs.

XS me

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s