Cawght geliştiren: Rajan Yadav
Record your app, let AI find where the business logic breaks.
DeneyselDeneysel
Bazı özellikler ücretli olabilirBazı özellikler ücretli olabilir
Kullanıcı yokKullanıcı yok
Uzantı meta verileri
Bu uzantı hakkında
Description:
Cawght watches how your web app behaves, then tries to break its business rules.
Traditional security scanners catch XSS and SQL injection — but they don't know that your discount code should only work once, that only admins can delete posts, or that User A shouldn't access User B's data. Cawght does.
How it works:
1. Open the sidebar and click Start Recording.
2. Use your web app normally — browse, click, submit forms.
3. Click Stop & Test — Cawght analyzes the captured traffic.
4. AI generates adversarial test scenarios targeting business logic.
5. Tests run automatically and findings are reported with evidence.
What it catches:
* Privilege escalation
* IDOR (Insecure Direct Object Reference)
* State manipulation
* Business constraint violations
* Data isolation failures
Privacy & Requirements:
* Bring your own AI key (Gemini, OpenAI, or Anthropic).
* No data is collected without your explicit action.
Cawght watches how your web app behaves, then tries to break its business rules.
Traditional security scanners catch XSS and SQL injection — but they don't know that your discount code should only work once, that only admins can delete posts, or that User A shouldn't access User B's data. Cawght does.
How it works:
1. Open the sidebar and click Start Recording.
2. Use your web app normally — browse, click, submit forms.
3. Click Stop & Test — Cawght analyzes the captured traffic.
4. AI generates adversarial test scenarios targeting business logic.
5. Tests run automatically and findings are reported with evidence.
What it catches:
* Privilege escalation
* IDOR (Insecure Direct Object Reference)
* State manipulation
* Business constraint violations
* Data isolation failures
Privacy & Requirements:
* Bring your own AI key (Gemini, OpenAI, or Anthropic).
* No data is collected without your explicit action.
0 inceleyiciden 0 puan aldı
İzinler ve veriler
Gerekli izinler:
- Tarayıcı sekmelerine erişme
- Gezinti sırasında tarayıcı etkinliğine erişme
- Tüm web sitelerine ait verilerinize erişme
İsteğe bağlı izinler:
- Tüm web sitelerine ait verilerinize erişme
Toplanması gereken veriler (geliştiriciye göre):
- Web sitesi etkinliği
Toplanması isteğe bağlı veriler (geliştiriciye göre):
- Teknik veriler ve etkileşim verileri
Daha fazla bilgi
- Eklenti bağlantıları
- Sürüm
- 2.1.1
- Boyut
- 1,09 MB
- Son güncelleme
- bir ay önce (30 Mar 2026)
- İlgili kategoriler
- Lisans
- Tüm hakları saklıdır
- Gizlilik ilkeleri
- Bu eklentinin gizlilik ilkelerini okuyun
- Sürüm geçmişi
- Koleksiyona ekle