Firefox Extensions for the Security Tester

By Paladion

April 13, 2006

As a die-hard Firefox fan, I am often quizzed on my favourite FF extensions. Here're some I find useful as an application security penetration tester:

  • Live HTTP Headers - study the request/response headers from within your browser.
  • Modify Headers - And modify those headers.
  • Tamper Data - Again, go ahead and edit those requests and responses!
  • JS View - dive in and get the javascripts in a single-click
  • View Rendered Source Chart - the ultimate tool to render the page source fully. I'll cover this in greater detail soon.
  • Show IP - a tool to quickly dig into an IP address
  • Server Spy - fingerprint the webserver while you are browsing :)

Tags: Uncategorized