Thanks to visit codestin.com
Credit goes to github.com

Skip to content

R3DHULK/secexplorer-pro

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
icons
icons
 
 
popup
popup
 
 
LICENSE
LICENSE
 
 
background.js
background.js
 
 
content.js
content.js
 
 
manifest.json
manifest.json
 
 
readme.md
readme.md
 
 

Repository files navigation

Extension Icon SecExplorer Pro - OWASP Security Testing Toolkit

SecExplorer Pro is a comprehensive security testing extension for Firefox that helps ethical hackers, penetration testers, and developers identify and test for common web vulnerabilities based on the OWASP Top 10 framework.

Features

  • Vulnerability Database: Contains hundreds of curated payloads for testing common vulnerabilities
  • OWASP Top 10 Coverage: Organized by the latest OWASP Top 10 categories
  • Quick Search: Find payloads by vulnerability type, platform, or severity
  • Payload Testing: Test payloads directly on web pages
  • Page Analysis: Scan pages for potential security issues
  • History Tracking: Keep track of your searches and tests
  • Dark Mode: Eye-friendly dark theme for extended testing sessions

Installation

  1. Clone this repository or download the ZIP file
  2. Open Firefox and navigate to about:debugging
  3. Click "This Firefox" in the left sidebar
  4. Click "Load Temporary Add-on"
  5. Select any file from the extension directory

For permanent installation, you'll need to package the extension and install it through Firefox Add-ons.

Usage

  1. Click the SecExplorer Pro icon in your Firefox toolbar
  2. Browse payloads by OWASP category or vulnerability type
  3. Use the search function to find specific payloads
  4. Click "Copy" to copy a payload to clipboard
  5. Use "Test" to try the payload on the current page
  6. Use the Analyzer tab to scan pages for vulnerabilities

Supported Vulnerability Types

  • SQL Injection (SQLi)
  • Cross-Site Scripting (XSS)
  • Cross-Site Request Forgery (CSRF)
  • Server-Side Request Forgery (SSRF)
  • Local/Remote File Inclusion (LFI/RFI)
  • Insecure Deserialization
  • Authentication Bypass
  • JWT Vulnerabilities
  • And many more...

Development

To modify or extend this extension:

  1. Download this project and add your knowledge.

Contributing

Contributions are welcome! Please:

  1. Fork the repository
  2. Create a feature branch
  3. Submit a pull request

License

This project is licensed under the GPT 3.0 License - see the LICENSE file for details.

Disclaimer

This tool is intended for legal security testing and educational purposes only. Only use this tool on systems you own or have permission to test. The developers are not responsible for any misuse of this software.

Always obtain proper authorization before performing any security testing.

About

Advanced security testing toolkit for ethical hackers covering OWASP Top 10.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages