Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bhattsameer/devtool-snippets-forhacks

Collection of snippets for devtools.
https://github.com/bhattsameer/devtool-snippets-forhacks

client-side-encryption-bypass debugger devtools javascript jsdebugging snippet

Last synced: 2 months ago
JSON representation

Collection of snippets for devtools.

Host: GitHub
URL: https://github.com/bhattsameer/devtool-snippets-forhacks
Owner: bhattsameer
Created: 2021-02-13T14:38:26.000Z (almost 4 years ago)
Default Branch: main
Last Pushed: 2021-03-17T13:20:39.000Z (almost 4 years ago)
Last Synced: 2024-08-05T17:38:05.786Z (6 months ago)
Topics: client-side-encryption-bypass, debugger, devtools, javascript, jsdebugging, snippet
Language: JavaScript
Homepage:
Size: 17.6 KB
Stars: 12
Watchers: 2
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - bhattsameer/devtool-snippets-forhacks - Collection of snippets for devtools. (JavaScript)

README

        ## DevTools snippet collection:

**TL;DR**  

List of some cool JS snippets which I have created and found while doing research of client side encryption bypass using devtool only.

| Sr. No. | Snippet | Description | Example |

|---------|---------|-------------|---------|

|1.| [consolesave.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/consolesave.js) | Used for saving console output in a file. | console.save("data");|

|2.| [getCurrentURLHeaders.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/getCurrentURLHeaders.js) | Used for fetching the Current URL Headers in console (table format) | - |

|3.| [developers_mindset.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/developers_mindset.js) | Just an example of how monitor() works | - |

|4.| [fuzzit.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/fuzzit.js) | fuzzing encrypted parameter using devtools only | - |

|5.| [fuzz_with_websocket.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/fuzz_with_websocket.js) | fuzzing encrypted parameters using devtools only with ws:// integration | - |

|6.| [JSEncrypt_fuzz.js](https://github.com/bhattsameer/devtool-snippets-forhacks/blob/main/Snippets/JSEncrypt_fuzz.js) | snippet for making JSEncrypt automate | - |

## How to run above snippets?

1. Open the application in chrome browser.

2. Open inspect element and navigate to source tab -> snippet section.

3. Copy paste the javascript code and execute it.

4. call the snippets methods from console and done.

## There is complete series of how to bypass client side encryption and fuzz the encrypted parameters using devtools.

1. [client-side-encryption-bypass-part-1](https://bhattsameer.github.io/2021/01/01/client-side-encryption-bypass-part-1.html)  

2. [client-side-encryption-bypass-part-2](https://bhattsameer.github.io/2021/02/14/client-side-encryption-bypass-part-2.html)  

3. [client-side-encryption-bypass-part-3](https://bhattsameer.github.io/2021/02/21/client-side-encryption-bypass-part-3.html)  

**Follow me:**

Twitter : [@sameer_bhatt](https://twitter.com/sameer_bhatt)  

Github  : [bhattsameer](https://github.com/bhattsameer)  

LinkedIn: [bhatt-sameer](https://linkedin.com/in/bhatt-sameer)