VarScope 作者: gerbil

A browser extension built for penetration testers and security researchers. Inspect, snapshot, diff, and export all JavaScript variables on any web page — including variables assigned live via the F12 browser console.

也可在 Firefox for Android™ 使用

0（0 筆評分）

下載 Firefox 並安裝擴充套件

下載檔案

關於此擴充套件

When assessing a web application, the JavaScript global scope (window) is one of the most revealing attack surfaces available. Frameworks, authentication tokens, API endpoints, feature flags, user objects, and internal state are routinely exposed as global variables — often unintentionally.
VarScope gives you a clean, colour-coded view of everything sitting on window at any moment, separated into native browser built-ins and variables created by the target application. You can take a snapshot, interact with the page, then compare to see exactly what changed — helping you map how the application's state evolves during login, form submission, navigation between SPA routes, or after triggering specific functionality.

由 1 位評論者給出 0 分

支援這位開發者

這套擴充套件的開發者希望您透過小小的捐獻協助其後續開發。

立刻捐款

VarScope 作者: gerbil

選用的權限：

收集下列資料：