FormVisualizer 作成者: tterac
実験的実験的
A small Firefox extension for web app security testers. It allows visualizing and manipulating form elements and clearing cookies, local storage and cache with a single action.
この拡張機能を使用するには Firefox が必要です
拡張機能メタデータ
スクリーンショット
この拡張機能について
Warning: It is not recommended that you use this extension with your Firefox profile for daily business use. Instead, use this with a profile for testing purpose. This is because you may clear all cookies and local storage data by accident (see feature 2).
You can find source code and license conditions on GitHub.
This extension is designed to make web application security testers' job a little easier. As a pentester, you may sometimes feel annoyed going back and forth between browser and local proxy such as Burp. With this extension, you can do simple request parameter manipulation only inside your browser.
This extension provides following four features:
1. Form visualization and manipulation
You can visualize all form elements (form, input, select, textarea including hidden ones) and others (applet, embed, iframe) in a web page with a single action [Alt+Ctrl+F]. You can easily edit their attributes such as name, value, action, src, method, enctype, target and disabled. The screen shots show how this feature looks like. This extension provides context menu to see and manipulate link URLs as well.
2. Clearing cookie, local storage and cache
You can clear all cookies and local storage data with a single action [Alt+Ctrl+D].
Additionally, browsing cache can be cleared from menu button.
Be aware that no confirmation screen is show upon deletion.
3. Show DOM HTML source.
This shows DOM HTML source (i.e. document.documentElement.outerHTML) with a single action [Alt+Ctrl+S]. The source is syntax highlighted.
4. Track HTTP response status code and URLs.
This shows HTTP status code in the top right corner of the browser tab.
Only HTTP status code of top-level navigation is shown.
From v1.3.2, URLs fetched by the page (top-level navigation, iframe, XHR, websocket etc.) are shown in developer tool console.
You can find source code and license conditions on GitHub.
This extension is designed to make web application security testers' job a little easier. As a pentester, you may sometimes feel annoyed going back and forth between browser and local proxy such as Burp. With this extension, you can do simple request parameter manipulation only inside your browser.
This extension provides following four features:
1. Form visualization and manipulation
You can visualize all form elements (form, input, select, textarea including hidden ones) and others (applet, embed, iframe) in a web page with a single action [Alt+Ctrl+F]. You can easily edit their attributes such as name, value, action, src, method, enctype, target and disabled. The screen shots show how this feature looks like. This extension provides context menu to see and manipulate link URLs as well.
2. Clearing cookie, local storage and cache
You can clear all cookies and local storage data with a single action [Alt+Ctrl+D].
Additionally, browsing cache can be cleared from menu button.
Be aware that no confirmation screen is show upon deletion.
3. Show DOM HTML source.
This shows DOM HTML source (i.e. document.documentElement.outerHTML) with a single action [Alt+Ctrl+S]. The source is syntax highlighted.
4. Track HTTP response status code and URLs.
This shows HTTP status code in the top right corner of the browser tab.
Only HTTP status code of top-level navigation is shown.
From v1.3.2, URLs fetched by the page (top-level navigation, iframe, XHR, websocket etc.) are shown in developer tool console.
あなたの体験を評価
Permissions and data詳細情報
必要な権限:
- 最近のブラウジング履歴、Cookie とその関連データの消去
- すべてのウェブサイトの保存されたデータへのアクセス
詳しい情報
- アドオンリンク
- バージョン
- 1.3.2
- サイズ
- 24.63 KB
- 最終更新日
- 4年前 (2021年6月7日)
- 関連カテゴリー
- ライセンス
- MIT License
- バージョン履歴
コレクションへ追加
tterac が公開している他の拡張機能
まだ評価されていません- まだ評価されていません
- まだ評価されていません
- まだ評価されていません
- まだ評価されていません
- まだ評価されていません