The all-in-one Red Team browser extension for Web Pentesters v0.5 releases
The all-in-one Red Team browser extension for Web Pentesters
HackTools is a web extension facilitating your web application penetration tests, it includes cheat sheets as well as all the tools used during a test such as XSS payloads, Reverses shells, and much more.
With the extension you no longer need to search for payloads on different websites or in your local storage space, most of the tools are accessible in one click. HackTools is accessible either in the pop-up mode or in a whole tab in the Devtools part of the browser with F12.
Current functions:
- Dynamic Reverse Shell generator (PHP, Bash, Ruby, Python, Perl, Netcat)
- Shell Spawning (TTY Shell Spawning)
- XSS Payloads
- Basic SQLi payloads
- Local file inclusion payloads (LFI)
- Base64 Encoder / Decoder
- Hash Generator (MD5, SHA1, SHA256, SHA512)
- Useful Linux commands (Port Forwarding, SUID)
Changelog v0.5
- Completely redesign the revershell component
- New transfert methods component
- Fix the MSF Builder component
Installation Steps:
Chrome
- Extract dist.zip (you will obtain a folder named dist)
- In your chromium-based web-browser upload the folder as an unpacked Extension check the repo readme.md
NEW Link to the Chrome extension: https://chrome.google.com/webstore/detail/hack-tools/cmbndhnoonmghfofefkcccljbkdpamhi
Firefox
https://addons.mozilla.org/fr/firefox/addon/hacktools/
Or install it as a temporary plugin in Firefox in the page about:debugging#/runtime/this-firefox by selecting the manifest inside dist
Instructions to build for Safari
Create a safari web extension project using the command below. This is to be run once.
xcrun safari-web-extension-coverter [path_to_dist_folder]
Following the instructions to create the project the default language should be Swift.
- Build project.
- Open Safari and enable unsigned extensions; Develop → Allow Unsigned Extensions.
- Open Safari → Preferences → Extensions and enable Hack-Tools
- Click on the extension icon and switch to full-screen mode.
Download
Author: Ludovic COULON & Riadh BOUCHAHOUA
