Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bhattsameer/devtool-snippets-forhacks

Collection of snippets for devtools.
https://github.com/bhattsameer/devtool-snippets-forhacks

client-side-encryption-bypass debugger devtools javascript jsdebugging snippet

Last synced: 2 months ago
JSON representation

Collection of snippets for devtools.

Awesome Lists containing this project

README

        

## DevTools snippet collection:

**TL;DR**
List of some cool JS snippets which I have created and found while doing research of client side encryption bypass using devtool only.

| Sr. No. | Snippet | Description | Example |
|---------|---------|-------------|---------|
|1.| [consolesave.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/consolesave.js) | Used for saving console output in a file. | console.save("data");|
|2.| [getCurrentURLHeaders.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/getCurrentURLHeaders.js) | Used for fetching the Current URL Headers in console (table format) | - |
|3.| [developers_mindset.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/developers_mindset.js) | Just an example of how monitor() works | - |
|4.| [fuzzit.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/fuzzit.js) | fuzzing encrypted parameter using devtools only | - |
|5.| [fuzz_with_websocket.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/fuzz_with_websocket.js) | fuzzing encrypted parameters using devtools only with ws:// integration | - |
|6.| [JSEncrypt_fuzz.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/JSEncrypt_fuzz.js) | snippet for making JSEncrypt automate | - |

## How to run above snippets?

1. Open the application in chrome browser.

2. Open inspect element and navigate to source tab -> snippet section.

3. Copy paste the javascript code and execute it.

4. call the snippets methods from console and done.

## There is complete series of how to bypass client side encryption and fuzz the encrypted parameters using devtools.

1. [client-side-encryption-bypass-part-1](https://bhattsameer.github.io/2021/01/01/client-side-encryption-bypass-part-1.html)
2. [client-side-encryption-bypass-part-2](https://bhattsameer.github.io/2021/02/14/client-side-encryption-bypass-part-2.html)
3. [client-side-encryption-bypass-part-3](https://bhattsameer.github.io/2021/02/21/client-side-encryption-bypass-part-3.html)

**Follow me:**

Twitter : [@sameer_bhatt](https://twitter.com/sameer_bhatt)
Github : [bhattsameer](https://github.com/bhattsameer)
LinkedIn: [bhatt-sameer](https://linkedin.com/in/bhatt-sameer)