A new tool for Penetration tests has been released. The tool comes as extension του Chrome και μπορεί να χρησιμοποιηθεί για την αναζήτηση τρωτών σημείων. Το Microbe can be used by security experts for multiple purposes.
Developed by Cosmin Gheorghita, a 19 programmer from Romania. Microbe can be used to detect vulnerabilities that allow SQL Injections, but also to analyze and modify requests and HTTP headers.
The multi-tool also brings a cookie manager, a form handler, a proxy manager, a coding multi-tool called Krypton, a section to enable or disable various elements (cookies, JavaScript, program plugins browsing), but also override methods and queries for developing SQL Injection syntaxes. Microbe supports functions with shortcodes.
When you install Microbe, you can access a web page by right-clicking and selecting Element Inspection. Then, in the devtools navigator, you should see a new tab called Microbe.
You can only access the Chrome extension through the Element Inspection because, for security reasons, Google has forbidden users to access the devtools page.
Security Tip: Do not install the extension on systems that contain your personal data as it asks for access to several of them. See the picture below.
What the Microbe contains
1. Enable/Disable the following for the visited page:
- CSS;
- JavaScript;
- Popups;
- Images;
- Cookies;
- Plugins.
2. Enable/Disable the navigation history.
3. Use a custom User Agent.
4. Setup and Proxy.
5.1. Encode / decode strings using the following ciphers:
- Binary;
- HEX;
- Base64;
- Rot13;
- ASCII codes;
- URL.
5.2. Computes MD5, SHA1, and SHA256 checksums for a given string.
