02.11.2010 18:35
Firefox-Plugins fuer Pen-Tests
Ein rezenter Post im Avast-Forum (http://forum.avast.com/index.php?topic=63117.0) listet etliche praktische Firefox-Plugins:
- Multi-proxy-switch: https://addons.mozilla.org/en-US/firefox/addon/7330/
- https://addons.mozilla.org/en-US/firefox/addon/2464/ to quickly change between Burp and Tor
- PacketlessRecon https://addons.mozilla.org/en-US/firefox/addon/6196/ gain packet less info on the target
- Show Ip https://addons.mozilla.org/en-US/firefox/addon/590/ shows server IP and additional\ IP-adresses in case of load balancing.
- Live HTTP-headers: https://addons.mozilla.org/en-US/firefox/addon/3829/ view HTTP-headers of a page
- Wappalyzer: https://addons.mozilla.org/en-US/firefox/addon/10229/
- Backend software Information https://addons.mozilla.org/en-US/firefox/addon/10493/ to identify platform frameworks and major apps
- Hackbar: https://addons.mozilla.org/en-US/firefox/addon/3899/ to enter POST requests
- Add and edit cookies: https://addons.mozilla.org/en-US/firefox/addon/13793/ to inspect cookies and testing
- Firebug: https://addons.mozilla.org/en-US/firefox/addon/1843/
- Wilderbug: http://www.command-tab.com/2008/01/19/widerbug-widescreen-firebug/ with all sort of tools and options
- Lazarus: https://addons.mozilla.org/en-US/firefox/addon/6984/ will memorize info on web forms
- FxIF: https://addons.mozilla.org/en-US/firefox/addon/5673/ for analyzing META information
- Fireforce: https://addons.mozilla.org/en-US/firefox/addon/64765/ brute force attacker via GET and POST
- Another good tool is the FireCAT: https://addons.mozilla.org/en-US/firefox/collection/firecat1_5_plus
- Malware Search https://addons.mozilla.org/en-US/firefox/addon/6718/
- RequestPolicy add-on: https://addons.mozilla.org/en-US/firefox/addon/9727/