Honk Finder

Extension Workflow & Planning5 users

Item media 1 (screenshot) for Honk Finder

Item media 2 (screenshot) for Honk Finder

Item media 3 (screenshot) for Honk Finder

Item media 4 (screenshot) for Honk Finder

Overview

Find obfuscated/suspicious code in the page body.

Find suspicious encoded/obfuscated code on site scraped page bodies. It takes times to look through thousands of lines of code, let this extension find and convert those items for you. Details: Honk in this case is a synonym for suspicious activity/code. This extension will look at the page body and give the option to search for Base64, Hex or possible indication of specific site compromises using regex (SocGholish, Balada and Parrot TDS). The use case here would be during threat or incident response research where you are reviewing a page via a third-party tool like Urlscan. In that instance you can see the entire dom as a body result where this tool can be leveraged. Use: To use this tool, look at the result of a page via some type of site scrapping tool and view the dom there. Open up dev tools and look at the console window. After clicking the tool icon and selecting the needed option, the results will be presented in the console window with a popup. The console will show all of the hits along with the conversion and the popup window will show how many possible hits along with how many it was able to convert. In addition, it will replace the found body text (where possible) and highlight that hit. Note: You should never visit suspicious sites directly, use a third party tool. This extension won't parse script tags anyway, only body.

0 out of 5
No ratings
Learn more about results and reviews.

Details

Version
2.1
Updated
January 24, 2024
Flag concern
Offered by
xd43d41u5x
Size
20.81KiB
Languages
English
Developer
Email
xd43d41u5x@gmail.com
Non-trader
This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data.

This developer declares that your data is

Not being sold to third parties, outside of the approved use cases
Not being used or transferred for purposes that are unrelated to the item's core functionality
Not being used or transferred to determine creditworthiness or for lending purposes

Show Hidden Password

2.5

Reveal the password hidden behind asterisks on login pages

Retire.JS

5.0

Scanning website for vulnerable js libraries. Icon by studiomx

Inspect Canonical

4.5

Easily check the canonical tag of a page

WhatFont

4.0

The easiest way to identify fonts on web pages.

Blur Page

1.0

Hide sensitive information on page

SecuriScan - Web Security Analyzer

0.0

Lightweight security scanner that analyzes websites for common vulnerabilities and security misconfigurations

Next.js Detector

5.0

Detects if the current page is built with Next.js.

Code Verify

2.1

An extension to verify the code running in your browser matches what was published.

Website Safety Checker

5.0

Detect scam websites on one click.

HTML Closing Tag Checker

4.0

Checks if there are any unclosed HTML tags in the current page or in the HTML tags entered

Vulners Lookup

5.0

Automatically detect and highlight CVE IDs on web pages with vulnerability information from Vulners.com

JS Recon Buddy

5.0

Analyze page scripts for bug bounty reconnaissance.