HackBar
大小:2.41MiB版本:v 0.7.0更新时间:2021-12-21
HackBar for Chrome
HackBar 的使用方法详解,最全面的教程
HackBar 描述:
用户数:40000
分类:开发者工具插件
扩展大小:2.41 MiB
最后更新时间:2021-12-21
版本:v 0.7.0
HackBar 插件简介:
这是来自Chrome商店的 HackBar 浏览器插件,您可以在当前页面下载它的最新版本安装文件,并安装在Chrome、Edge等浏览器上。
HackBar插件下载方法/流程:
点击下载按钮,关注“扩展迷Extfans”公众号并获取验证码,在网页弹窗中输入验证码,即可下载最新安装文件。
HackBar插件安装教程/方法:
(1)将扩展迷上下载的安装包文件(.zip)解压为文件夹,其中类型为“crx”的文件就是接下来需要用到的安装文件
(2) 从设置->更多工具->扩展程序 打开扩展程序页面,或者地址栏输入 Chrome://extensions/ 按下回车打开扩展程序页面
(3) 打开扩展程序页面的“开发者模式”
(4) 将crx文件拖拽到扩展程序页面,
完成安装如有其它安装问题,
请扫描网站底部二维码与客服联系如有疑问请参考:
https://www.extfans.com/installation/## Contributor
- 0140454
- GitHub: https://github.com/0140454
- lebr0nli
- GitHub: https://github.com/lebr0nli
- boylin0
- GitHub: https://github.com/boylin0
## How to open it?
1. Open "Developer tools" (Press F12 or Ctrl+Shift+I)
2. Switch to "HackBar" tab
3. Enjoy it
## Features
* Supported methods
* GET
* POST
* application/x-www-form-urlencoded
* multipart/form-data
* application/json
* For more information, please visit https://github.com/0140454/hackbar/blob/master/README.md
* Auto Test
* Common paths (Wordlist from dirsearch included)
* SQLi
* Dump all database names (MySQL, PostgreSQL)
* Dump tables from database (MySQL, PostgreSQL)
* Dump columns from database (MySQL, PostgreSQL)
* Union select statement (MySQL, PostgreSQL)
* Error-based injection statement (MySQL, PostgreSQL)
* Dump in one shot payload (MySQL)
* Reference: https://github.com/swisskyrepo/PayloadsAllTheThings
* Dump current query payload (MySQL)
* Reference: https://github.com/swisskyrepo/PayloadsAllTheThings
* Space to Inline comment
* XSS
* Vue.js XSS payloads
* Angular.js XSS payloads for strict CSP
* Some snippets for CTF
* Html encode/decode with hex/dec/entity name
* String.fromCharCode encode/decode
* LFI
* PHP wrapper - Base64
* SSTI
* Jinja2 SSTI
* Flask RCE Reference: https://twitter.com/realgam3/status/1184747565415358469
* Java SSTI
* Shell
* Python reverse shell cheatsheet
* bash reverse shell cheatsheet
* nc reverse shell cheatsheet
* php reverse shell/web shell cheatsheet
* Encoding
* URL encode/decode
* Base64 encode/decode
* Hexadecimal encode/decode
* Unicode encode/decode
* Escape ASCII to hex/oct format
* Hashing
* MD5
* SHA1
* SHA256
* SHA512
## Shortcuts
* Load
* Default: Alt + A
* Mac: Control + A
* Split
* Default: Alt + S
* Mac: Control + S
* Execute
* Default: Alt + X
* Mac: Control + X
## Third-party Libraries
* Vue.js
* Vuetify.js
* crypto-js