Item logo image for HackBar

HackBar

Featured
4.2(

51 ratings

)
Item media 1 screenshot
Item media 2 screenshot

Overview

A browser extension for Penetration Testing

## Contributor - 0140454 - GitHub: https://github.com/0140454 - lebr0nli - GitHub: https://github.com/lebr0nli - boylin0 - GitHub: https://github.com/boylin0 - HSwift - GitHub: https://github.com/HSwift ## How to open it? 1. Open "Developer tools" (Press F12 or Ctrl+Shift+I) 2. Switch to "HackBar" tab 3. Enjoy it ## Features * Load * From tab (default) * From cURL command * Supported * HTTP methods * GET * POST * application/x-www-form-urlencoded * multipart/form-data * application/json * Request editing mode * Basic * Raw * Custom payload * For more information, please visit https://github.com/0140454/hackbar/blob/master/README.md * Auto Test * Common paths (Wordlist from dirsearch included) * SQLi * Dump all database names (MySQL, PostgreSQL, MSSQL) * Dump tables from database (MySQL, PostgreSQL, MSSQL) * Dump columns from database (MySQL, PostgreSQL, MSSQL) * Union select statement (MySQL, PostgreSQL, MSSQL) * Error-based injection statement (MySQL, PostgreSQL, MSSQL) * Dump in one shot payload (MySQL) * Reference: https://github.com/swisskyrepo/PayloadsAllTheThings * Dump current query payload (MySQL) * Reference: https://github.com/swisskyrepo/PayloadsAllTheThings * Space to Inline comment * XSS * Vue.js XSS payloads * Angular.js XSS payloads for strict CSP * Some snippets for CTF * Html encode/decode with hex/dec/entity name * String.fromCharCode encode/decode * Helper function for converting payload with `atob` * LFI * PHP wrapper - Base64 * SSRF * AWS - IAM role name * SSTI * Jinja2 SSTI * Flask RCE Reference: https://twitter.com/realgam3/status/1184747565415358469 * Java SSTI * Shell * Python reverse shell cheatsheet * bash reverse shell cheatsheet * nc reverse shell cheatsheet * php reverse shell/web shell cheatsheet * Encoding * URL encode/decode * Base64 encode/decode * Hexadecimal encode/decode * Unicode encode/decode * Escape ASCII to hex/oct format * Hashing * MD5 * SHA1 * SHA256 * SHA384 * SHA512 ## Shortcuts * Load * Default: Alt + A * Split * Default: Alt + S * Execute * Default: Alt + X * Switch request editing mode * Default: Alt + M ## Third-party Libraries For more information, please visit https://github.com/0140454/hackbar#third-party-libraries

4.2 out of 551 ratings

Google doesn't verify reviews. Learn more about results and reviews.

Review's profile picture

zz yJul 22, 2024

nice good

2 out of 4 found this helpful
Review's profile picture

jessie slusherMay 11, 2024

Good job. Good functionality, maybe not quite as good as phitachi but very good none the less. Thanks

3 out of 6 found this helpful
Review's profile picture

faze dayboy DayApr 28, 2024

nice..

3 out of 6 found this helpful

Details

  • Version
    1.2.6
  • Updated
    September 19, 2024
  • Offered by
    0140454
  • Size
    1.56MiB
  • Languages
    English
  • Developer
    Email
    0140454@gmail.com
  • Non-trader
    This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data.

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

Related

hackbar

5.0(1)

A browser extension for using kbar in HackMD

FOFA Pro View

4.7(11)

FOFA Pro view

CounterXSS

5.0(3)

An Extension to counter XSS attack!

HackBar

2.1(16)

A HackBar for google chrome/firefox browser. Small tool for pentesting websercurity.

Hack-Tools

4.8(26)

The all in one Red team extension for web pentester

OWASP Penetration Testing Kit

4.8(43)

OWASP Penetration Testing Kit

Port Checker Tool

5.0(1)

Is a free online tool to find open ports in your system. You can also test whether port forwarding is working or not.

XSS

5.0(6)

Web Development tool

XSS辅助工具

0.0(0)

XSS辅助工具

FindSomething

4.9(31)

在网页的源代码或js中找到一些有趣的东西

X情报查询助手

5.0(5)

鼠标上的情报专家。简化查询流程,提升分析效率。步刻科技有限公司出品

YesWeHack VDP Finder

5.0(2)

This extension tells if visited sites have vulnerability disclosure programs

hackbar

5.0(1)

A browser extension for using kbar in HackMD

FOFA Pro View

4.7(11)

FOFA Pro view

CounterXSS

5.0(3)

An Extension to counter XSS attack!

HackBar

2.1(16)

A HackBar for google chrome/firefox browser. Small tool for pentesting websercurity.

Hack-Tools

4.8(26)

The all in one Red team extension for web pentester

OWASP Penetration Testing Kit

4.8(43)

OWASP Penetration Testing Kit

Port Checker Tool

5.0(1)

Is a free online tool to find open ports in your system. You can also test whether port forwarding is working or not.

XSS

5.0(6)

Web Development tool

Google apps