The essential tool for the Firefox infiltration division

Work desire good its prerequisite, Firefox has always been the infiltration of the necessary weapon, small series recommended 34 Firefox Penetration Testing Auxiliary plug-in, which contains penetration testing, information collection, agent, encryption and decryption functions.

1:firebug

One of Firefox's five-star strong recommendation plugins, don't explain more.

2:user Agent Switcher
A plugin that changes the user agent of the client

3:hackbar
The Siege Master tool, which provides SQL injection and XSS attacks, enables fast encoding of strings.

4:httpfox
Monitor and analyze HTTP traffic between the browser and the Web server

5:live HTTP Headers
Instantly view HTTP headers for a website

6:tamper Data
View and modify Http/https header and Post parameters

7:showip
The status bar displays the current page's IP address, host name, ISP, country, and city information.

8:osvdb
Open Source Vulnerability Database retrieval

9:packet Storm Search Plugin
Packet Storm provides plug-ins that can search for vulnerabilities, tools, and exploits.

10:offsec exploit-db Search
Search EXPLOIT-DB Information

11:security Focus Vulnerabilities Search Plugin
Search for vulnerabilities on security focus

12:cookie Watcher
Show cookies in the status bar

13:header Spy
Display HTTP headers in the status bar

14:groundspeed
Manipulate the application user interface.

15:cipherfox
Display the current SSL/TLS encryption algorithms and certificates in the status bar

16:XSS Me
XSS Test Extension

17:sql Inject Me
SQL injection Test Extension

18:wappalyzer
View the applications used by the site

19:poster
Send HTTP requests that interact with the Web server and view the results of the output

20:javascript Deobfuscator
Display JavaScript code running on a Web page

21:modify Headers
Modify the HTTP request header

22:foxyproxy
Agent Tools

23:flagfox
You can display the national flag of the current website in the address bar or status bar, there are more other functions, such as: Double-click flag can achieve WOT function, mouse click is the WHOIS function. Of course, users can set the shortcut keys in the options to achieve such functions as copy IP, Wikipedia query and so on.

24:greasemonkey
Greasemonkey allows you to add DHTML statements (user scripts) to any Web page to change how they are displayed. Just like CSS allows you to take over the style of a Web page, user script allows you to easily control any aspect of web design and interaction. For example:

* Make the URL displayed on the page a link that can be clicked directly into. * Enhance the usability of Web pages so that you often visit the site more in line with your habits. * Bypass the annoying bugs that often appear on the site.

25:domain Details
Display server type, IP address, domain name registration information, etc.

26:websecurify
Websecurify is a web security detection software extension of Firefox, can be used for Web application security assessment

27:xssed Search
Search xssed.com Cross-site Scripting database

28:viewstatepeeker
View ASP. iewstate

29:cryptofox
Crack MD5, encryption/decryption tools

30:worldip
Display the server's IP, address, PING, Traceroute, RDNs, and other information

31:server Spy
Identify the type of Web server accessed, the version, and the plug-in for the IP address

32:default passwords
Search cirt.net default password database.

33:snort IDS Rule Search
It should be useful to search for the IDs rules of snort and do signature development.

34:firecat
Firecat (Firefox Catalog of Auditing exTensions) is a list of the most effective and useful application security audits and risk assessment tools (these tools are published in the form of Firefox plugins). The types of security tools that are not collected in Firecat include: Fuzzer, Agent, and application scanner.

The essential tool for the Firefox infiltration division