Open in app

Sign in

Write

Sign in

Browser Extensions — For Bug Bounty

Piyush Kumawat (securitycipher)
2 min readOct 23, 2023

Here is a list of useful browser extensions that you can use in bug bounty hunting to enhance your web security and development efforts.

Read Full Blog with Details — https://securitycipher.com/docs/browser-extensions

Wappalyzer

A technology profiler that identifies the technologies used on websites, from CMS to JavaScript libraries.

Hackbar

A browser extension for penetration testing, available for Chrome and Firefox.

FoxyProxy

Standard Simplify proxy server access in browsers with rules and quick switch options.

OWASP Penetration Testing Kit

Simplify application security with in-browser DAST and SCA scanning for vulnerabilities.

KNOXSS Community Edition

Tool for XSS (Cross-Site Scripting) discovery

Retire.js

Scan web apps for vulnerable JavaScript libraries and identify outdated versions.

Trufflehog

Extension for automatically detecting API keys and credentials on websites.

DotGit

Detect exposed .git directories and other vulnerabilities on visited websites.

Bishop Vulnerability Scanner

Background scanner for exposed version control systems and misconfigured admin tools.

Modheader

Modify HTTP headers, response headers, and URLs with advanced options for Chrome and Firefox.

HackTools

Facilitate web app penetration tests with cheat sheets and tools like XSS payloads and reverse shells.

Request Maker

Capture, modify, and make HTTP requests for penetration testing and analysis.

Shodan

Find where websites are hosted, IP owners, and open services/ports.

Hunter

Quickly find email addresses on websites with a single click.

Open Multiple URLs

Open multiple web pages in new tabs from a plain-text list.

Cookie-Editor

Create, edit, and delete cookies for the current tab, ideal for privacy and development.

S3 Bucket List

Record Amazon S3 bucket exposures while browsing with this Chrome extension.

Mitaka

Search IP, domain, URL, hash, and more via the context menu using this browser extension.

d3coder

An extension for encoding and decoding text using base64, rot13, and more.

Read Full Blog with Details — https://securitycipher.com/docs/browser-extensions

#bugbounty #tools #cybersecurity

Bug Bounty
Technology
Cybersecurity
Penetration Testing
Security

--

--

Piyush Kumawat (securitycipher)

Written by Piyush Kumawat (securitycipher)

949 Followers

🔒 Freelance Penetration Tester 🔒 Penetration tester by day, bug bounty hunter by night. https://securitycipher.com/services

Help

Status

About

Careers

Blog

Privacy

Terms

Text to speech

Teams