OWASP Penetration Testing Kit
OWASP Penetration Testing Kit
OWASP Pen Testing Kit - Browser Security Extension
The 'OWASP Penetration Testing Kit' is a comprehensive Edge add-on designed for security professionals. It streamlines app security tasks by offering in-browser DAST/SCA scanning, JWT inspection, and a suite of tools for request tampering, cookie management, and decoding. Integrated with Swagger.IO and Selenium, it is ideal for uncovering vulnerabilities and improving security workflows.
Add-on stats
Manifest V3
Permissions:
- activeTab
- cookies
- notifications
- storage
- unlimitedStorage
- tabs
- webRequest
- background
- debugger
- scripting See more
Host permissions:
- <all_urls>
- *://*/*
Size: 7.33M
URLs: Website ,Privacy policy
Full description: See detailed description
Ranking
Other platforms
Not available on Android
User reviews
These summaries are automatically generated weekly using AI based on recent user reviews.
Edge Add-on Store does not verify user reviews, so some user reviews may be inaccurate,
spammy, or outdated. Pros
- Provides a range of professional and powerful tools for penetration testing.
- Features like Request Builder and JWT Inspector are user-friendly and effective for security testing.
- SCA scan with reporting is thorough and impactful for identifying security concerns.
Cons
- There are reports of some functions not working properly.
- One user reported a security issue after installation, suspecting the addon to be malicious.
- Some specific features like the microphone might have issues on certain websites according to one user.
Most mentioned
- The professionalism of the extension.
- The effectiveness of the Request Attacker in finding XSS and SQL Injection vulnerabilities.
- The user-friendly and powerful JWT Inspector tool.
- SCA scan with reporting capability is highly valued.
- Concerns regarding potential security issues and non-functioning features.
User reviews
I really recommended this extension because of its professionalism
by luix, 2024-02-03
Indeed this extension is very professional
by ASDASXD, 2024-01-26
Wow this extension is an extraordinary
by fddssxz, 2024-01-26
Add-on safety
Risk impact
OWASP Penetration Testing Kit requires a lot of sensitive permissions. Exercise caution before installing.
Risk impact analysis details
- Critical Allows for debugging of other web apps and extensions, which can intersect with sensitive information and security boundaries.
- Critical ****** ****** ** ******* ***** ***** *** ** **** ** ***** **** ******** ****** *** ******** ********** * ******* ********
- Critical ****** ****** ** *** ********* ****** * *********** ******** **** ** ** *** ******* *** ****** **** **** *** ******* *****
- High ******* ******* **** *** ****** ***** *** ***** ** ******* **** ********* ********* ** * *********** *****
- Medium ******* ******* ************* ***** *** ** ******* *** **** ******* ****** ******** *******
- Low ******* ****** ** *** ********* ********
Risk likelihood
We don't have sufficient data to confidently determine the risk likelihood of OWASP Penetration Testing Kit. Use it at your own risk.
Risk likelihood analysis details
- High This extension website URL may be invalid
- High **** ********* ******* ****** *** *** ** *******
- High **** ********* *** *** **** ****** ********* ********** *** *** ** ****** ** *****
- Low **** ********* *** ******* **** **** * ****** **** ***** ******** *** **** ****** ** ** ****** *** *****
- Low **** ********* *** ***** **** **** * ****** **** ***** ********** *** **** ****** ** ** ****** *** *****
- Good **** ********* *** **** **** *******
Upgrade to see full risk analysis details