Firefox Addons For Penetration Testing
1>Firebug—
(useful for the debugging tools that can help you tracking rogue javascript code on servers)—
https://addons.mozilla.org/en-US/firefox/addon/firebug/
2>User Agent Switcher—
(You can use this extension to change the user agent of your browser)
https://addons.mozilla.org/en-US/firefox/addon/user-agent-switcher/
3>HackBar—
(Useful for SQL injection and XSS attacks)
https://addons.mozilla.org/en-US/firefox/addon/hackbar/
4>HttpFox—
(Monitor and analyze all the incoming and outgoing HTTP traffic between your browser and the web server.)
https://addons.mozilla.org/en-US/firefox/addon/httpfox/
5>Live HTTP Headers—
(View the HTTP headers of a website instantly)
https://addons.mozilla.org/en-US/firefox/addon/live-http-headers/
6>Tamper Data—
(View and modify HTTP/HTTPS headers and post parameters.)
https://addons.mozilla.org/en-US/firefox/addon/tamper-data/
7>ShowIP—
(Shows the IP of the current page)
https://addons.mozilla.org/en-US/firefox/addon/showip/
8>OSVDB—
(Open Source Vulnerability Database Search)
https://addons.mozilla.org/en-us/firefox/addon/osvdb/
9>Packet Storm search plugin—
(Search the packet storm database for exploits)
https://addons.mozilla.org/en-us/firefox/addon/packet-storm-search-plugin/
10>Offsec Exploit-db Search—
(Search the Exploit-db archive)
https://addons.mozilla.org/en-us/firefox/addon/offsec-exploit-db-search/
11>Security Focus Vulnerabilities Search Plugin—-
(Search for vulnerabilities in the Security Focus)
https://addons.mozilla.org/en-us/firefox/addon/securityfocus-vulnerabilities-/
12>Cookie Watcher—
(Watch the selected cookie in the status bar)
https://addons.mozilla.org/en-us/firefox/addon/cookie-watcher/
13>Header Spy—
(Shows HTTP Headers on status bar)
https://addons.mozilla.org/en-us/firefox/addon/header-spy/
14>Groundspeed—
(Manipulate the application user interface)
https://addons.mozilla.org/en-us/firefox/addon/groundspeed/
15>CipherFox—
(Displays the current SSL/TLS cipher and certificate on the status bar)
https://addons.mozilla.org/en-us/firefox/addon/cipherfox/
16>XSS Me—
(Tool for testing reflected XSS vulnerabilities)
https://addons.mozilla.org/en-us/firefox/addon/xss-me/
17>SQL Inject Me—
(Extension to test SQL Injection vulnerabilities)
https://addons.mozilla.org/en-us/firefox/addon/sql-inject-me/
18>Wappalyzer—
(Discover technologies and applications that are used on websites)
https://addons.mozilla.org/en-us/firefox/addon/wappalyzer/
19>Poster—
(Make HTTP requests,interact with web services and watch the output)
https://addons.mozilla.org/en-us/firefox/addon/poster/
20>Javascript Deobfuscator—
(Show the JavaScript code that are running on web pages)
https://addons.mozilla.org/en-us/firefox/addon/javascript-deobfuscator/
21>Modify Headers—
(Modify HTTP request headers)
https://addons.mozilla.org/en-us/firefox/addon/modify-headers/
22>FoxyProxy—
(Advanced proxy management tool)
https://addons.mozilla.org/en-us/firefox/addon/foxyproxy-standard/
23>FlagFox—
(Displays a country flag for the location of the web server)
https://addons.mozilla.org/en-us/firefox/addon/flagfox/
24>Greasemonkey—
(Customize the way a webpage behaves by using small bits of JavaScript)
https://addons.mozilla.org/en-us/firefox/addon/greasemonkey/
25>Domain Details—
(Displays Server Type, Headers, IP Address, Location Flag, and links to Whois Reports)
https://addons.mozilla.org/en-us/firefox/addon/domain-details/
26>Websecurify—
(Useful for security assessments in web applications)
https://addons.mozilla.org/en-us/firefox/addon/websecurify/
27>XSSed Search—
(Search the cross-site scripting database at XSSed.Com)
https://addons.mozilla.org/en-us/firefox/addon/xssed-search/
28>ViewStatePeeker—
(ASP.NET viewstate viewer)
https://addons.mozilla.org/en-us/firefox/addon/viewstatepeeker/
29>CryptoFox—
(CryptoFox is an encryption/decryption tool for cracking MD5 passwords)
https://addons.mozilla.org/en-US/firefox/addon/cryptofox/
30>WorldIP—
(Location of the web server,IP,Datacenter,Ping,Traceroute,RDNS,AS etc)
https://addons.mozilla.org/en-US/firefox/addon/worldip-flag-and-datacenter-pi/
31>Server Spy—
(Unveils the technology of the web server (Apache, IIS etc.)
https://addons.mozilla.org/en-US/firefox/addon/server-spy/
32>Default Passwords—
(Search CIRT.net default password database)
https://addons.mozilla.org/en-US/firefox/addon/default-passwords-cirtne-58786/
33>Snort IDS Rule Search—
(Search for Snort IDS Rules)
https://addons.mozilla.org/en-US/firefox/addon/snort-ids-rule-search/
sumber
![watsup [sistem monitor pengganti top]](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxzJctUZ0M84RBFlrcupefaZ421ySIsMNl5BYyYv7P5uzRcbJ_wKaRmpJykmBaHvoZK2mR5m-p3Z4wO0HzBiCzOFD_ZZgbo22YhglqrA4Tt9kaN0IdUJEDso5WJHuPdqLMScWcbUI54ow/s72-c/1_002.png "watsup [sistem monitor pengganti top]")
