首页扩展程序 Untrusted Types for DevTools

Untrusted Types for DevTools

提供方： Thomas Orlita

3

开发者工具 1,000+ 位用户

插件简介

Abusing Trusted Types to discover XSS sinks.

Discover and test inputs passed into sinks that could lead to DOM XSS vulnerabilities.

A sink is a code pattern that could run arbitrary JavaScript code if the input is malicious, for example: innerHTML, eval, document.write.

This extension adds a panel to DevTools where you can see/filter the sink logs and customize settings.

Keywords (by default: "d0mxss") that are found to be passed in a sink will be highlighted in the extension and in console.

You can then find the stack trace of a specific log:
1. Click to copy the ID,
2. Open Console>Filter and paste the ID,
3. Now you can inspect the stack trace. Click on the function name to open it in the Sources tab.

其他信息

ID bpeblffgmddnafmnmdjohcmkbeifdlnb 版本 1.1.1 上次更新日期 2021年10月12日大小 39.16KiB 语言支持1 种语言开发者

info@thomasorlita.com

适用浏览器

谷歌浏览器、其他Chromium内核的浏览器

相关插件

YesWeHack VDP Finder

Investigate with Lacework

Vulners Web Scanner

OWASP Penetration Testing Kit

Plugin Vulnerabilities

Bishop Vulnerability Scanner

Display Access Keys

Cyber Web Tools

Input hidden Monitor

YesWeHack VDP Finder

Investigate with Lacework

Vulners Web Scanner

OWASP Penetration Testing Kit

Plugin Vulnerabilities

Bishop Vulnerability Scanner

Display Access Keys

Cyber Web Tools

Input hidden Monitor

来自该开发者的更多内容

Remove "People Also Search For" Box

Untrusted Types for DevTools Chrome插件下载

为打击盗链困扰，本站已启用人机验证
微信扫码关注左侧公众号，发送“插件”二字获得验证码，验证码5分钟全站有效

[不知道如何安装？点击这里查看插件安装教程。]