7 Most Important Addons for Hackers & Pentesters
Hello friends, after a short break m back with an interesting post. well guys check my previous post tutorial to Create Penetration testing Lab in Kali Linux or Backtrack, but actually all challenges, practice, & Hacking requires tools, so there is Addons as in the form of tools. There are many types of Addons & there is also many Hacking, Pentesting ad-dons specially for Security researchers. So today i created this Post to give you little info about important addons for hackers & pentesters.
# 7 Most Important Addons for Hackers & Pentesters :
*First of all always use Mozilla Firefox for Web App Pentesting & to use all these addons.
[1] Tamper Data
Tamper Data is one of the most useful Addons for Pentesters it is used to view and modify HTTP/HTTPS headers and post parameters.Trace and time HTTP response or requests. Security test web applications by modifying POST parameters and Much More.
Click on Image to Enlarget it
[2] Hack Bar
Hack Bar is one of the Best & Most wanted Simple security audit / Penetration test tool. Very Strongly Recommended you to Install & very useful. Useful in XSS, SQL Encoding/Decoding - MD5, SH1, Base64, Hexing, Splitting etc.
[3] Live HTTP Headers
Live HTTP Headers is little bit same as Tamper Data but with great difference and art of working & Viewing HTTP headers of a page while browsing. It most comes use to Inject XSS Payloads & get many information of website plugins,CSS,Javascript & HTML content.
Click on Image to Enlarget it
[4] User Agent Switcher
The User Agent Switcher extension adds a menu and a toolbar button to switch the user agent of a browser. It can help you changing the User Agent to IE, Search Robots, I-Phone (I-OS), or you can also create your own User Agent. we've also Posted How to discover XSS through HTTP Header Injection & there we used User Agent Swithcer.
Click on Image to Enlarget it
[5] Cookie Manager+
Cookies manager to view, edit and create, Inject Cookies etc. It also shows extra information about cookies, allows edit multiple cookies at once & backup/restore.
Click on Image to Enlarget it
HttpFox monitors and analyzes all incoming and outgoing HTTP traffic between the browser and the web servers. It aims to bring the functionality known from tools like Http Watch or IE Inspector to the Firefox browser.
Information available per request includes:
- Request and response headers
- Sent and received cookies
- Querystring parameters
- POST parameters
- Response body
Information available per request includes:
- Request and response headers
- Sent and received cookies
- Querystring parameters
- POST parameters
- Response body
Click on Image to Enlarget it
PassiveRecon provides information security professionals with the ability to perform "packetless" discovery of target resources utilizing publicly available information. Most Wanted Information Gathering Tool.
Click on Image to Enlarget it
[0] XSS Me
This one is Just from my side ;). isn't recommended but you must have - XSS Me : Cross-Site Scripting (XSS) is a common flaw found in todays web applications. XSS flaws can cause serious damage to a web application. Detecting XSS vulnerabilities early in the development process will help protect a web application from unnecessary flaws. XSS-Me is the Exploit-Me tool used to test for reflected XSS vulnerabilities.
Click on Image to Enlarget it
Thank you friends for reading my Post, actually many users are still aware of Addons & there uses, so i just posted to share knowledge - If you have any type of problem o question please comment & Let me know. and please share it.
0 comments:
Post a Comment