LazySec
Quickly removes HTML UI validations for back-end validation testing
什麼是LazySec?
LazySec是由Agustín Tobio Corneu開發的Chrome擴展程式,該擴展的主要功能是“Quickly removes HTML UI validations for back-end validation testing”。
擴展截圖
下載LazySec擴展crx文件
下載LazySec擴展crx格式的文件,手動將Chrome擴充功能安裝到瀏覽器中,也可以將crx文件分享給朋友,輕鬆安裝Chrome擴充功能。
擴展使用說明
DESCRIPTION:
LazySec is a very simple tool designed for software testers but of general use. It helps in the task of testing Lazy Security implementations, hence the name, in the UI and revealing a pages' Lazy Secrets, hence the name II, by accomplishing these two things:
UNLOCK ELEMENTS: The extension unlocks all elements of a webpage by taking away some attributes, namely "disabled", "readonly", "maxlength", "required" and others related to form validations. In simple English: this will allow you to write on forbidden fields or write forbidden things. To do this hit LazySec's "Remove UI Security" button.
VIEW HIDDEN ELEMENTS: The extension makes visible those elements hidden by the "display:none", "type=hidden", and "visibility=hidden" attributes / styles. To do this hit LazySec's "Show Hidden Elements" button.
WHY LazySec?
+ I don't like opening the console nor "going hunting" by inspecting the page's DOM
+ Many project managers or Software Architects defend lazy security thingies by stating that unlocking elements of a webpage is something only a "very knowledgeable" or "tech savvy" user can do. Well, now every average Joe with LazySec can do it, so you better watch out!!
HOW TO CONTRIBUTE TO LazySec AND THE WORLD:
+ Use the tool and send cool suggestions.
+ If you think of other actions to add to LazySec just send them in, they will be greatly appreciated and properly acknowledged.
+ Send a word of thanks, it will make me happy and improve LazySec's karma.
ABOUT THE ICON:
I thought I'd let you know what the icon actually is just in case you are not used to watching Picasso's or Dali's all of the time. It is an L and an S like this "LS", but it can also be interpreted as a face shooting an eye beam from the unseen eye. Pretty cool, huh? Can't unsee now.
MEA CULPA: It is acknowledged that certain "harm" or malicious use could result of the use of this extension to silly web pages that implement lazy security. However, what this extension achieves is perfectly achievable from the browser itself, by inputting javascript on the console. This extension is for testers to avoid trying to enable each field one by one or fiddling with the HTML to find hidden objects. If your web page or web application was "h4ck3d" using LazySec then don't rage at me, simply tell your testers to use it for testing, or test it yourself. I provide this tool free of charge, hope you like it. All in all, this extension was made so that web applications' security and validations are implemented in a more serious way. Or at least, not in a LazySec way. 擴展基本資訊
| 名稱 |  LazySec |
| ID | llegephenamkbmnjbjpgkdakkfmgeggp |
| 官方網址 | https://chromewebstore.google.com/detail/lazysec/llegephenamkbmnjbjpgkdakkfmgeggp |
| 簡介 | Quickly removes HTML UI validations for back-end validation testing |
| 檔案大小 | 18.65 KB |
| 安裝次數 | 2,030 |
| 目前版本 | 0.2.0.0 |
| 更新時間 | 2021-11-09 |
| 上架時間 | 2015-08-13 |
| 評分 | 5.00/5 共 6 次評分 |
| 開發者 | Agustín Tobio Corneu |
| 電子郵箱 | [email protected] |
| 付費類型 | free |
| 支援的語言 | en |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"manifest_version": 2,
"name": "LazySec",
"short_name": "LazySec",
"description": "Quickly removes HTML UI validations for back-end validation testing",
"version": "0.2.0.0",
"icons": {
"16": "images\/icon16.png",
"32": "images\/icon16.png",
"48": "images\/icon48.png",
"64": "images\/icon48.png",
"128": "images\/icon128.png"
},
"browser_action": {
"default_popup": "popup.html",
"default_title": "LazySec"
},
"permissions": [
"activeTab"
]
} | |
