https://github.com/sha0coder/web-fu
The web hacking chrome extension
https://github.com/sha0coder/web-fu
Last synced: 9 months ago
JSON representation
The web hacking chrome extension
- Host: GitHub
- URL: https://github.com/sha0coder/web-fu
- Owner: sha0coder
- Created: 2020-12-10T13:02:36.000Z (about 5 years ago)
- Default Branch: main
- Last Pushed: 2021-11-02T11:29:32.000Z (about 4 years ago)
- Last Synced: 2025-03-27T22:51:08.349Z (9 months ago)
- Language: JavaScript
- Size: 1.03 MB
- Stars: 7
- Watchers: 3
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# web-fu
The web hacking chrome extension
== license ==
GPL v3
== install ==
(...) button -> more tools -> Extensions -> developer mode on -> load unpacked
clone the repo and load unpacked
== usage ==
Right Click Action
Extensions icon for more features
== pros ==
- Agility
- Pseudo manual
- Integrated
- Speed
- No copy paste get/post/cookies/ua/headers
- no proxy needed
- integrated in chrome
- ssl friendly
- urllog logs before sending the request
- user-event-hooks
- no sever daemon
== cons ==
- no user agent change¿?
== features ==
- bruteforcing folders, files, params names, param values on get/post.
- false positive reduction with gauss
- default wordlists or load worlist
- cookie editor
- notes
- log
- visual crawl
- visual bruteforce (experimental)
- clever params auditor expert system
- request interceptor
- base64 and url encoding/decoding
- danger bytes, all encoded bytes
- portscan
- build request
== components ==
Bar-Button -> main.html -> main.js -> settings.html -> settings.js
| |
| |
(RighClick) -----+ | |
| | |
v | |
Background -+--> menu.js | |
| | |
+--> attackAPI.js <-+-----> ATTACKS |
| |
+--> storageAPI.js <----------------------------+
|
V
WORDLISTS