Item logo image for Gecko

Gecko

5.0(

2 ratings

)
ExtensionDeveloper Tools523 users
Item media 1 (screenshot) for Gecko

Overview

Automated CSPT discovery tool

Gecko is an open-source (https://github.com/vitorfhc/gecko/) powerful Chrome extension designed for web security enthusiasts and professionals. Effortlessly detect client-side path traversal vulnerabilities directly within your browser. Key Features: - Comprehensive UI: Clearly view and manage all security findings in one intuitive interface. - Easy Configuration: Quickly customize detection settings through a convenient popup. - Real-Time Detection: Automatically intercept HTTP requests to identify client-side path traversals. - Partial Matching: Supports partial match detection to enhance coverage and precision.

5 out of 52 ratings

Learn more about results and reviews.

Details

  • Version
    1.6.1
  • Updated
    March 31, 2026
  • Size
    706KiB
  • Languages
    English
  • Developer
    Email
    vitorfhcosta@gmail.com
  • Non-trader
    This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

Manage extensions and learn how they're being used in your organization
The developer has disclosed that it will not collect or use your data. To learn more, see the developer’s privacy policy.

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

For help with questions, suggestions, or problems, visit the developer's support site

Related

DotGit

4.8

An extension for checking if .git is exposed in visited websites

Bug Hunter Toolkit

4.0

Professional bug hunting and penetration testing toolkit with essential security tools

DOMLogger++

5.0

DOMLogger++ allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.

JS Recon Buddy

5.0

Analyze page scripts for bug bounty reconnaissance.

S3BucketList

3.5

S3BucketList automatically scans network requests made by your browser to detect Amazon S3 bucket URLs

FindSomething

4.6

Find interesting things in the webpage's source code or JavaScript

Caido Extension

5.0

Browser extension to proxy to Caido

rep+

5.0

rep+ - Capture, modify, and replay HTTP requests in Chrome DevTools with AI-powered security analysis.

Endpoint Extractor

5.0

Extracts endpoints from the current page.

Jsmon Chrome Extension

5.0

Fetches and scans JS urls from network history

EndPointer

5.0

An endpoint parser and extractor with many flexible features

Recon Buddy

5.0

Extract recon data like JWTs, API keys, parameters, and endpoints from visited pages.

DotGit

4.8

An extension for checking if .git is exposed in visited websites

Bug Hunter Toolkit

4.0

Professional bug hunting and penetration testing toolkit with essential security tools

DOMLogger++

5.0

DOMLogger++ allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.

JS Recon Buddy

5.0

Analyze page scripts for bug bounty reconnaissance.

S3BucketList

3.5

S3BucketList automatically scans network requests made by your browser to detect Amazon S3 bucket URLs

FindSomething

4.6

Find interesting things in the webpage's source code or JavaScript

Caido Extension

5.0

Browser extension to proxy to Caido

rep+

5.0

rep+ - Capture, modify, and replay HTTP requests in Chrome DevTools with AI-powered security analysis.

Google apps