Description from extension meta
Penetration Testing Kit
Image from store
Description from store
Penetration Testing Kit features:
1) Dashboard - With information about client/server technologies, like Wappalyzer our PenTestKit extension can give you the same information and even more. You can see request/response information and then execute them again in request builder. View the response in HTML view to prove your XSS attack success.
2) Request Builder - Need to check what happens if you send a SQL injection or XSS attack? Just use this request builder, modify the parameters, execute the request and check it right in your Chrome browser.
3) Recorder - This part of the extension is really good for InsightAppSec or AppSpider Enterprise users. You can record a macro and modify it right here if you need any changes, then copy or download the recorded macro and upload into directly InsightAppSec or AppSpider Enterprise. You also can record a traffic and export it as a HAR file and use for traffic authentication in AppSec products.
Since version #2.2.0 macro replay functionality is supported.
4) OWASP Security Headers - Check if your web application follows recommendations from OWASP for headers like X-XSS-Protection or X-Content-Type-Options.
5) Swagger utility allows you to see all endpoints from swagger file - json or yaml. It allows you to save a modified swagger.json file with HOST and SHEMES values changed.
6) AppSpider Pro reports validate functionality is supported since #2.2.0
Latest reviews
- (2020-03-05) Mr Big: Великолепное дополнение от создателей metasploit
- (2020-03-01) Bob Lerner: We use this internally to enable customers to authenticate to their applications with complex mechanisms. This extension has been a game changer.
- (2019-02-15) Carl Castin: great
Latest issues
- (2020-02-27, v:3.1.3) Ancy Susan Mathews: Unable to see export option
Unable to export or download the HAR file
Statistics
Installs
2,587
history
Category
Rating
5.0 (3 votes)
Last update / version
2020-03-27 / 3.1.9
Listing languages