Untrusted Types for DevTools

Untrusted Types for DevTools

By Thomas Orlita

No Rating Available.

Untrusted Types for DevTools

Screenshots:

Untrusted Types for DevToolsScreenshotsScreenshots

Untrusted Types for DevTools Mode Free Download

Abusing Trusted Types to discover XSS sinks.
Discover and test inputs passed into sinks that could lead to DOM XSS vulnerabilities.

A sink is a code pattern that could run arbitrary JavaScript code if the input is malicious, for example: innerHTML, eval, document.write.

This extension adds a panel to DevTools where you can see/filter the sink logs and customize settings.

Keywords (by default: “d0mxss”) that are found to be passed in a sink will be highlighted in the extension and in console.

You can then find the stack trace of a specific log:
1. Click to copy the ID,
2. Open Console>Filter and paste the ID,
3. Now you can inspect the stack trace. Click on the function name to open it in the Sources tab.

Category: ,

Operating System: Web Borwser

Price: Free

Author Details

Volume master google extension

admin@googleextension.com

admin

Student

Ruhul kabir is an Executive officer of googleextension.com. He loves the new Technology for learing. He normally published every Technology related in his post. He also works this website article Share at Googleextension.com

Technical Information

Package Name: bpeblffgmddnafmnmdjohcmkbeifdlnb
Version: 1.1.1
File size: 39.16KiB

Leave a Reply

Your email address will not be published.

Your Rating: