I have released the new version of the HackBar firefox plugin. Well.. not exactly.. i released it a month ago, but it should be on this blog, so here it is.
>> So... why the lame name?
<< Well.. it started out as a joke. I wanted to write a firefox plugin, and i was fed up with the confusing and unreadable url when performing SQL injections. So a lame textarea toolbar was born. I decided to call it HackBar.. cuz, thats what it helps you do.. doesn't it? After a while i saw the error of my way. The first problem was getting it through the firefox plugin people. That took about a month.. And now, its not just my toy, its anyones toy.. And apparently its my problem that its not available in chinese.. or some other language i cant read.
Anyway, heres the link: https://addons.mozilla.org/en-US/firefox/addon/3899
Hackbar 1.1.1 description
# New features
- Show / Hide hotkey [F9]
- Tab sensitive
- Auto load, split and focus when pressing hotkey on a new URL.
- Localized ( English and dutch for now )
- Textarea width set to 100% (removed dragbar)
- Complete code revision (OO based instead of functions)
# In general
This toolbar will help you in testing sql injections, XSS holes and site security. It is NOT a tool for executing standard exploits and it will NOT learn you how to hack a site. Its main purpose is to help a developer do security audits on his code. If you know what your doing, this toolbar will help you do it faster. If you want to learn to find security holes, you can also use this toolbar, but you will probably also need a book, and a lot of google :)
# The advantages are:
- Even the most complicated urls will be readable
- The focus will stay on the textarea, so after executing the url (ctrl+enter) you can just go on typing / testing
- The url in textarea is not affected by redirects.
- I tend to use it as a notepad :)
- Usefull tools like on the fly uu/url decoding etc.
- All functions work on the currently selected text.
# Load url ( alt a )
This loads the url of the current page into the textarea.
# Split url ( alt s )
When this button is clicked, the url/text in the textarea will be split into multiple lines using the ? and & character
# Execute ( alt x, ctrl enter )
This will execute the current url in the textarea, i mostly use ctrl+enter
# INT -1 ( alt - )
First select a number in the textarea and press this button, the number will be lowered by 1 and the url will be loaded.
# INT +1 ( alt + )
Again first select a number in the textarea and press this button, 1 will be added to the number and the url will be loaded.
# MD5 Hash ( alt m )
this is a standard hashing method, often used as an encryption method for passwords. It will MD5 hash the currently selected string.
# MySQL CHAR() ( alt y )
If quotes are escaped but you did find an SQL injection thats exploitable, you can use this button to convert lets say:
load_file('/etc/passwd') --> load_file(CHAR(47, 101, 116, 99, 47, 112, 97, 115, 115, 119, 100))
Thus omiting the use of quotes to load a file.
You can also use this on
WHERE foo LIKE ('%bar%') --> WHERE foo LIKE (CHAR(37, 98, 97, 114, 37))
# MsSQL CHAR() ( alt q )
Same story as MySQL CHAR(), MsSQL has a slightly different CHAR syntax
--> WHERE foo LIKE ( CHAR(37) + CHAR(98) + CHAR(97) + CHAR(114) + CHAR(37))
# Base64 encode / decode
Base64 encoding ( UU ) is often used to store data (like a return url etc.) This will help you to read those values.
# URLencode / decode
This will encode or decode the currently selected characters to url safe characters. I mostly use it to end a query with # (%23) when in a pseudo path where i cant use /* or --
Tuesday, June 26, 2007
Hackbar 1.1.1
Subscribe to:
Post Comments (Atom)
12 comments:
i'm a big fan of hackbar. i never thought of searching the author.
i found your blog through 0x000000.com
very-very useful plugin.
it has some problems decoding % 00 and such "alien" characters but it's great overall.
(i did not know i cannot post % and 00 together :) )
Thanks! I'm actually working on a newer version a.t.m including a bunch of new features ;)
% 00
Yeah blogger is pretty anal about null-bytes, php tags and suchlike ;)
what features will you add to the new version ?
Ah well, a lot :) Mostly more of everything.. SHA 1 + 2 enc, dec to hex, bin conversions. hex+1, hex-1. And im thinking about a list of predefined XSS /SQLi vectors. (like union selects etc.) If you have any special wishes, let me know!
character+1 -1
because some sites use ids made of letters
maybe a small clipboard to the right if i want to save some links, or some data.
maybe join url
Hmm yeah, nice one.
Ill add the Character +1-1 (as in a-b-c-d i presume ;)
I was thinking about some sort of bookmark style clipboard.. not sure about it yet..
Join url is pretty much done when the url gets executed..
Thanks for the suggestions!
there might be a thing useful:
something that could create the string:
1,2,3,4,5,6,7,8 .... ,n
:)
yeah, i was planning to include that in the SQLi vector set :)
i am a big fan of hackbar and i like the features it has but could you possibly add rotate13 encoding/decoding(rotate 13 switches each letter in the alphabet with the letter 13 letters away[and since its 13 letters away in a 26 letter alphabet encoding something that is encoded decodes it]). that would be awesome.
its kindof hard to do that on your own
Hi there!
Can u update ur extenton for firefox3? :)
it very usefull for people ;))
waiting for response
Hi Deerua,
I already did :) I submitted it last friday (13-6) but it seems the firefox testcrew is a bit overloaded. Be patient.. The new hackbar has lots and lots of new features! Including POST data support ;)
Post a Comment