Item logo image for Gecko

Gecko

5.0(

1 rating

)
ExtensionDeveloper Tools442 users
Item media 1 (screenshot) for Gecko

Overview

Automated CSPT discovery tool

Gecko is an open-source (https://github.com/vitorfhc/gecko/) powerful Chrome extension designed for web security enthusiasts and professionals. Effortlessly detect client-side path traversal vulnerabilities directly within your browser. Key Features: - Comprehensive UI: Clearly view and manage all security findings in one intuitive interface. - Easy Configuration: Quickly customize detection settings through a convenient popup. - Real-Time Detection: Automatically intercept HTTP requests to identify client-side path traversals. - Partial Matching: Supports partial match detection to enhance coverage and precision.

5 out of 51 rating

Learn more about results and reviews.

Details

  • Version
    1.5.1
  • Updated
    December 5, 2025
  • Size
    702KiB
  • Languages
    English
  • Developer
    Email
    vitorfhcosta@gmail.com
  • Non-trader
    This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data. To learn more, see the developer’s privacy policy.

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

For help with questions, suggestions, or problems, visit the developer's support site

Related

DotGit

4.8

An extension for checking if .git is exposed in visited websites

DOMLogger++

5.0

DOMLogger++ allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.

postLogger

5.0

Extension to log postMessage()

Dead Domain Discovery

0.0

Scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains are resolvable.

S3BucketList

3.5

S3BucketList automatically scans network requests made by your browser to detect Amazon S3 bucket URLs

FindSomething

4.6

Find interesting things in the webpage's source code or JavaScript

JS_Beautify,CSS_Beautify,HTML_Beautify

5.0

This extension For beautify js and css and html

Caido Extension

5.0

Browser extension to proxy to Caido

rep+

5.0

rep+ - Capture, modify, and replay HTTP requests in Chrome DevTools with AI-powered security analysis.

Endpoint Extractor

5.0

Extracts endpoints from the current page.

Jsmon Chrome Extension

5.0

Fetches and scans JS urls from network history

EndPointer

5.0

An endpoint parser and extractor with many flexible features

DotGit

4.8

An extension for checking if .git is exposed in visited websites

DOMLogger++

5.0

DOMLogger++ allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.

postLogger

5.0

Extension to log postMessage()

Dead Domain Discovery

0.0

Scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains are resolvable.

S3BucketList

3.5

S3BucketList automatically scans network requests made by your browser to detect Amazon S3 bucket URLs

FindSomething

4.6

Find interesting things in the webpage's source code or JavaScript

JS_Beautify,CSS_Beautify,HTML_Beautify

5.0

This extension For beautify js and css and html

Caido Extension

5.0

Browser extension to proxy to Caido

Google apps