This Chrome extension is designed to assist mobile users, providing a tool specifically focused on detecting Client Side Desynchronization (CSD) vulnerabilities in web applications. Developed with a mobile-centric approach, this extension offers valuable insights into potential security gaps, contributing to a safer web experience.
- CSD Vulnerability Detection: Identify and explore potential Client Side Desync vulnerabilities.
- Mobile-friendly Interface: Tailored for users who predominantly navigate the web on mobile devices.
- Clone this repository or download the ZIP file.
- Open Chrome and go to
chrome://extensions/. - Enable "Developer mode" in the top right corner.
- Click "Load unpacked" and select the folder where you cloned or extracted the extension files.
- Navigate to a webpage you want to test.
- Open Chrome Developer Tools (
Ctrl + Shift + Ior right-click and select "Inspect"). - Locate the "Client Side Desync" tab.
- Input the URL and any relevant data.
- Click the "Desync!" button to initiate the CSD attack.
- Check the Chrome Developer Tools' Network tab for potential anomalies.
Feel free to contribute to this project by opening issues, suggesting features, or submitting pull requests. Your input is highly valued!
This project is licensed under the MIT License.