HackBar is a developer tool that helps penetration testers do code security audits.Check the code for security vulnerabilities.
Requested Permissions
tabs
webRequest
webRequestBlocking
Features
Supported methods
GET
POST
application/x-www-form-urlencoded
multipart/form-data
application/json
Auto Test
Common paths (Wordlist from dirsearch included)
SQLi
Dump all database names (MySQL, PostgreSQL)
Dump tables from database (MySQL, PostgreSQL, SQLite)
Dump columns from database (MySQL, PostgreSQL, SQLite)
Union select statement (MySQL, PostgreSQL, SQLite)
Error-based injection statement (MySQL, PostgreSQL)
Dump in one shot payload (MySQL)
Dump current query payload (MySQL)
Space to Inline comment
XSS
Vue.js XSS payloads
Angular.js XSS payloads for strict CSP
Some snippets for CTF
Html encode/decode with hex/dec/entity name
String.fromCharCode encode/decode
LFI
PHP Wrapper - Base64
SSTI
Jinja2 SSTI (Flask RCE Reference)
Java SSTI
Shell
Python reverse shell cheatsheet
bash reverse shell cheatsheet
nc reverse shell cheatsheet
php reverse shell/web shell cheatsheet
Encoding
URL encode/decode
Base64 encode/decode
Hexadecimal encode/decode
Unicode encode/decode
Escape ASCII to hex/oct format
Hashing
MD5
SHA1
SHA256
SHA512
How to open it?
Open Developer tools (Press F12 or Ctrl + Shift + I)
Switch to HackBar tab
Enjoy it
Shortcuts
| Description | Default | Mac |
|---|---|---|
| Load | Alt + A |
Control + A |
| Split | Alt + S |
Control + S |
| Execute | Alt + X |
Control + X |
Download
- 下載 HackBar 0.7.0.0 擴充套件( 更新時間: 2022-11-20 15:09:50)
