Hack-Tools
The all in one Red team extension for web pentester
OWASP Penetration Testing Kit
Review user movement across collected snapshots.
View collected rating snapshots from the latest 7-day window to assess rating stability.
Compare 1-day, 7-day, and 30-day net growth and growth rate.
Review publication date, version, supported languages, and crawl timestamps.
Review the store description, core capabilities, and common use cases.
The OWASP Penetration Testing Kit (PTK) browser extension is your all-in-one solution for streamlining your daily AppSec tasks. Whether you’re a penetration tester, a Red Team member, or an AppSec practitioner, OWASP PTK enhances your efficiency and provides deep insights into your target application.
Key Features:
Runtime Scanning (DAST & IAST & SAST & SCA):
Perform Dynamic Application Security Testing, Static Analysis, In-Browser IAST and Software Composition Analysis on the fly. Identify SQL injection, command injection, reflected/stored XSS, SQL auth bypass, XPath injections, JWT attacks, and other complex threats.
Static Analysis (SAST):
PTK automatically parses loaded JavaScript, HTML, and CSS right in your browser—before any code ever runs. It flags unsafe patterns like `eval()`, `innerHTML`/`outerHTML` injection, insecure cryptographic calls, missing input sanitization, and common anti-patterns.
Inspect the latest comments and rating distribution.
Store average score: 4.8. The bars below are calculated from synced review text only, so they may be empty for extensions that have public ratings but no synced comments yet.
Review related products from the Chrome Web Store detail page.
The all in one Red team extension for web pentester
A browser extension for Penetration Testing
Tiny vulnerability scanner based on vulners.com vulnerability database. Passively scan websites while you surf internet!
Adds warning message to WordPress Plugin Directory pages when plugins are from developer we have released security advisories for.
Quickly add disruptive unicode, naughty strings, and more to your clipboard.
Highlight IPs, domains, and URLs on any website to enrich them using Pulsedive's threat intelligence.
Works on Chrome and other Chrome-based browsers. Sadly, won't work on Arc browser :(
Helpful stuff thanks!
Wonderful extension
JWT Inspector in this extension is fantastic for securing token-based authentication. Easy to use, highly recommended!
Request Attacker impresses with its ability to find XSS and SQL Injection. OWASP PTK, you've got a winner!
Request Builder is a dream for executing modified requests. OWASP PTK nailed it with this one!
Request Builder is a game-changer for crafting and testing modified requests. Kudos!
Request Attacker deserves praise for its efficiency in finding XSS and SQL Injection.
SCA scan with reporting is a valuable asset for comprehensive security checks.
This is a great and amazing extension